You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@plc4x.apache.org by cd...@apache.org on 2022/03/31 14:48:03 UTC
[plc4x] 10/10: fix(build): Addressed a CVE in jackson as well as bumped the version of Netty to the latest version
This is an automated email from the ASF dual-hosted git repository.
cdutz pushed a commit to branch develop
in repository https://gitbox.apache.org/repos/asf/plc4x.git
commit 49c9c48662ed66f322835194f645af6a6b9f1bee
Author: cdutz <ch...@c-ware.de>
AuthorDate: Thu Mar 31 16:47:45 2022 +0200
fix(build): Addressed a CVE in jackson as well as bumped the version of Netty to the latest version
---
pom.xml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/pom.xml b/pom.xml
index 04e7b81..c02a11a 100644
--- a/pom.xml
+++ b/pom.xml
@@ -139,7 +139,7 @@
<hamcrest.version>2.2</hamcrest.version>
<httpclient.version>4.5.13</httpclient.version>
<httpcore.version>4.4.15</httpcore.version>
- <jackson.version>2.13.1</jackson.version>
+ <jackson.version>2.13.2</jackson.version>
<woodstox-core.version>6.2.8</woodstox-core.version>
<!-- When updating this to the latest version, we're getting errors in the opcua server tests -->
<jaxb.version>3.0.2</jaxb.version>
@@ -152,7 +152,7 @@
<logback.version>1.2.10</logback.version>
<milo.version>0.6.3</milo.version>
<mockito.version>4.4.0</mockito.version>
- <netty.version>4.1.72.Final</netty.version>
+ <netty.version>4.1.75.Final</netty.version>
<owasp-dependency-check.version>6.5.1</owasp-dependency-check.version>
<pcap4j.version>1.8.2</pcap4j.version>
<slf4j.version>1.7.32</slf4j.version>
@@ -381,7 +381,7 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
- <version>${jackson.version}</version>
+ <version>${jackson.version}.2</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.dataformat</groupId>