Upgrade Tika to fix CVE-2025-54988

2025-09-16 09:06:32 +02:00 · 2025-08-21 13:44:11 +02:00
parent 7bb14b34ba
commit 895beec0b9
2 changed files with 2 additions and 1 deletions
--- a/setup/flavors/compose/docker-compose.yml
+++ b/setup/flavors/compose/docker-compose.yml
@@ -156,7 +156,7 @@ services:

 {% if tika_enabled %}
  fts_attachments:
-    image: apache/tika:2.9.2.1-full
+    image: apache/tika:latest-full
    hostname: tika
    logging:
      driver: journald
--- a/towncrier/newsfragments/3903.bugfix
+++ b/towncrier/newsfragments/3903.bugfix
@@ -0,0 +1 @@
+Upgrade Tika to latest to fix CVE-2025-54988 (XXE). You will need to run setup again for the fix to be applied! This is defence in depth rather than something critical as on docker deployments there is no impact.
				`@@ -0,0 +1 @@`
				`Upgrade Tika to latest to fix CVE-2025-54988 (XXE). You will need to run setup again for the fix to be applied! This is defence in depth rather than something critical as on docker deployments there is no impact.`