Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0052268 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| defect | [Openbravo ERP] A. Platform | major | have not tried | 2023-04-26 18:03 | 2024-02-12 16:06 | |||
| Reporter | shuehner | View Status | public | |||||
| Assigned To | meriem_azaf | |||||||
| Priority | high | Resolution | fixed | Fixed in Version | PR24Q2 | |||
| Status | closed | Fix in branch | Fixed in SCM revision | |||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Merge Request Status | approved | |||||||
| Review Assigned To | ||||||||
| OBNetwork customer | OBPS | |||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Support ticket | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0052268: Update fileUpload library is outdated and should be updated to the latest release to use FileUploadBase#setFileCountMax | |||||||
| Description | This library is outdated (version 1.4) and should be updated to the latest version (1.5) https://github.com/apache/commons-fileupload/ [^] That allows us to use FileUploadBase#setFileCountMax which should be either: - set hardcoded - make configurable but with sane default value applied by default | |||||||
| Steps To Reproduce | . | |||||||
| Tags | No tags attached. | |||||||
| Attached Files | ||||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
|||||||||||||||
|
|||||||||||||||
 Relationships |
|
Notes |
|
|
(0150365) AugustoMauch (administrator) 2023-05-29 09:27 |
https://github.com/advisories/GHSA-hfrx-6qgj-fp6c [^] |
|
(0150540) hgbot (developer) 2023-05-31 12:52 |
Merge Request created: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/899 [^] |
|
(0160633) hgbot (developer) 2024-02-12 16:06 |
Merge request merged: https://gitlab.com/openbravo/product/openbravo/-/merge_requests/899 [^] |
|
(0160634) hgbot (developer) 2024-02-12 16:06 |
Directly closing issue as related merge request is already approved. Repository: https://gitlab.com/openbravo/product/openbravo [^] Changeset: 8069e182437fc9573ea241f6c467f6635e0acd16 Author: Meriem Azaf <meriem.azaf@openbravo.com> Date: 12-02-2024 16:05:59 URL: https://gitlab.com/openbravo/product/openbravo/-/commit/8069e182437fc9573ea241f6c467f6635e0acd16 [^] Fixes ISSUE-52268: Update fileUpload library to its latest vesrion (1.5) Update fileUpload library to the latest version (1.5) to use FileUploadBase#setFileCountMax. The BaseProcessActionHandler class now uses the new setFileCountMax API to limit the number of file uploads it will support. The exact number is obtained by checking how many upload parameters are defined for the given process. We need to include as part of the max number the number of other parameters (such as processId, windowId, etc) --- A lib/runtime/commons-fileupload-1.5.jar M legal/Licensing.txt M modules/org.openbravo.client.application/src/org/openbravo/client/application/process/BaseProcessActionHandler.java M modules/org.openbravo.client.application/web/org.openbravo.client.application/js/process/ob-parameter-window-view.js M src-core/.classpath R lib/runtime/commons-fileupload-1.4.jar --- |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2023-04-26 18:03 | shuehner | New Issue | |
| 2023-04-26 18:03 | shuehner | Assigned To | => Triage Platform Base |
| 2023-04-26 18:03 | shuehner | OBNetwork customer | => No |
| 2023-04-26 18:03 | shuehner | Modules | => Core |
| 2023-04-26 18:03 | shuehner | Triggers an Emergency Pack | => No |
| 2023-04-26 18:03 | shuehner | Issue generated from | 0044937 |
| 2023-04-26 18:03 | shuehner | Relationship added | related to 0044937 |
| 2023-04-26 18:05 | shuehner | Summary | Update fileUpload library is outdated and should be updated to the latest release => Update fileUpload library is outdated and should be updated to the latest release to use FileUploadBase#setFileCountMax |
| 2023-04-26 18:05 | shuehner | Description Updated | View Revisions |
| 2023-05-05 10:51 | shuehner | OBNetwork customer | No => OBPS |
| 2023-05-24 07:18 | alostale | Type | feature request => defect |
| 2023-05-29 09:27 | AugustoMauch | Note Added: 0150365 | |
| 2023-05-29 09:27 | AugustoMauch | Assigned To | Triage Platform Base => meriem_azaf |
| 2023-05-31 12:52 | hgbot | Merge Request Status | => open |
| 2023-05-31 12:52 | hgbot | Note Added: 0150540 | |
| 2024-02-12 16:06 | hgbot | Merge Request Status | open => approved |
| 2024-02-12 16:06 | hgbot | Note Added: 0160633 | |
| 2024-02-12 16:06 | hgbot | Resolution | open => fixed |
| 2024-02-12 16:06 | hgbot | Status | new => closed |
| 2024-02-12 16:06 | hgbot | Fixed in Version | => PR24Q2 |
| 2024-02-12 16:06 | hgbot | Note Added: 0160634 | |
| 2024-04-26 15:33 | alostale | Relationship added | causes 0055292 |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |