Frans Flippo updated an issue

Hibernate ORM / HHH-14018 Upgrade to dom4j 2.1.3 for CVE-2020-10683 Change By: Frans Flippo h2. Overview dom4j 2.1. is a dependency of hibernate core and has a CVE (see [http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10683)|http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000632)]. Hibernate core should upgrade to version 2.1.3 or later. Affects: Hibernate 5.4.12.Final. Add Comment

Get Jira notifications on your phone! Download the Jira Cloud app for Android or iOS This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100126-sha1:dd08494)