You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@bookkeeper.apache.org by yo...@apache.org on 2022/09/21 11:10:00 UTC

[bookkeeper] 07/07: Bump snakeyaml from 1.31 to 1.32 to solve CVE-2022-38752 (#3491)

This is an automated email from the ASF dual-hosted git repository.

yong pushed a commit to branch branch-4.15
in repository https://gitbox.apache.org/repos/asf/bookkeeper.git

commit e10aa3441617ed56a00c576616469a2993f33518
Author: Tian Luo <fu...@outlook.com>
AuthorDate: Fri Sep 16 08:49:47 2022 +0800

    Bump snakeyaml from 1.31 to 1.32 to solve CVE-2022-38752 (#3491)
    
    (cherry picked from commit fc85ce0bbe9e1e33a6e92a6eebab432eadb4e34e)
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 1252c2c11e..d99ca4603d 100644
--- a/pom.xml
+++ b/pom.xml
@@ -171,7 +171,7 @@
     <rocksdb.version>6.29.4.1</rocksdb.version>
     <shrinkwrap.version>3.0.1</shrinkwrap.version>
     <slf4j.version>1.7.32</slf4j.version>
-    <snakeyaml.version>1.31</snakeyaml.version>
+    <snakeyaml.version>1.32</snakeyaml.version>
     <spotbugs-annotations.version>4.6.0</spotbugs-annotations.version>
     <javax-annotations-api.version>1.3.2</javax-annotations-api.version>
     <testcontainers.version>1.15.1</testcontainers.version>