You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@pulsar.apache.org by eo...@apache.org on 2022/04/06 10:04:13 UTC
[pulsar] branch master updated: [fix][security] Upgrade MySQL connector to 8.0.28 to get rid of CVE-2021-3711 (#14998)
This is an automated email from the ASF dual-hosted git repository.
eolivelli pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pulsar.git
The following commit(s) were added to refs/heads/master by this push:
new 1df46db634a [fix][security] Upgrade MySQL connector to 8.0.28 to get rid of CVE-2021-3711 (#14998)
1df46db634a is described below
commit 1df46db634ac360b10db0a7cad6fada321031477
Author: Nicolò Boschi <bo...@gmail.com>
AuthorDate: Wed Apr 6 12:04:06 2022 +0200
[fix][security] Upgrade MySQL connector to 8.0.28 to get rid of CVE-2021-3711 (#14998)
---
pom.xml | 1 +
pulsar-io/debezium/mysql/pom.xml | 10 ++++++++++
2 files changed, 11 insertions(+)
diff --git a/pom.xml b/pom.xml
index a89c751db28..273ec9ed695 100644
--- a/pom.xml
+++ b/pom.xml
@@ -162,6 +162,7 @@ flexible messaging model and an intuitive client API.</description>
<scala-library.version>2.13.6</scala-library.version>
<debezium.version>1.7.2.Final</debezium.version>
<debezium.postgresql.version>42.2.25</debezium.postgresql.version>
+ <debezium.mysql.version>8.0.28</debezium.mysql.version>
<jsonwebtoken.version>0.11.1</jsonwebtoken.version>
<opencensus.version>0.18.0</opencensus.version>
<hbase.version>2.4.9</hbase.version>
diff --git a/pulsar-io/debezium/mysql/pom.xml b/pulsar-io/debezium/mysql/pom.xml
index 4c98164c72a..cdbd740d1b7 100644
--- a/pulsar-io/debezium/mysql/pom.xml
+++ b/pulsar-io/debezium/mysql/pom.xml
@@ -46,6 +46,16 @@
</dependencies>
+ <dependencyManagement>
+ <dependencies>
+ <dependency>
+ <groupId>mysql</groupId>
+ <artifactId>mysql-connector-java</artifactId>
+ <version>${debezium.mysql.version}</version>
+ </dependency>
+ </dependencies>
+ </dependencyManagement>
+
<build>
<plugins>