62818 – Upgrade dependency xerces:xercesImpl to 2.12.0

Bug 62818 - Upgrade dependency xerces:xercesImpl to 2.12.0

Summary: Upgrade dependency xerces:xercesImpl to 2.12.0

Status:	RESOLVED FIXED

Alias:	None

Product:	JMeter - Now in Github
Classification:	Unclassified
Component:	Main (show other bugs)
Version:	5.0
Hardware:	PC Linux

Importance:	P2 enhancement (vote)
Target Milestone:	JMETER_5.1
Assignee:	JMeter issues mailing list

URL:
Keywords:	FixedInTrunk

Depends on:
Blocks:

Reported:	2018-10-11 13:30 UTC by S. Seide
Modified:	2018-10-19 20:10 UTC (History)
CC List:	1 user (show)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description S. Seide 2018-10-11 13:30:56 UTC

Please update the dependency of xerces:xercesImpl to 2.12.0 as currently used 2.11.0 is really old and has some open security issues [1] which are fixed in 2.12.0.


Thanks,
S, Seide

[1] https://snyk.io/vuln/maven:xerces:xercesImpl

Comment 1 Felix Schumacher 2018-10-11 17:51:34 UTC

Thanks for the report. Will be included in the next release.

Date: Thu Oct 11 17:44:46 2018
New Revision: 1843575

URL: http://svn.apache.org/viewvc?rev=1843575&view=rev
Log:
Updated to xercesImpl to 2.12.0 (from 2.11.0)

Reported by Stefan Seide (stefan at trilobyte-se.de)

Modified:
    jmeter/trunk/LICENSE
    jmeter/trunk/build.properties
    jmeter/trunk/eclipse.classpath
    jmeter/trunk/res/maven/ApacheJMeter_parent.pom
    jmeter/trunk/xdocs/changes.xml


Date: Thu Oct 11 17:48:38 2018
New Revision: 1843576

URL: http://svn.apache.org/viewvc?rev=1843576&view=rev
Log:
Add bugzilla id to changelog

Followup to r1843575.
Bugzilla Id: 62818

Modified:
    jmeter/trunk/xdocs/changes.xml

Comment 2 The ASF infrastructure team 2022-09-24 20:38:14 UTC

This issue has been migrated to GitHub: https://github.com/apache/jmeter/issues/4890