You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@bookkeeper.apache.org by yo...@apache.org on 2022/09/21 11:09:56 UTC

[bookkeeper] 03/07: Bump snakeyaml from 1.30 to 1.31 to solve CVE-2022-25857 (#3469)

This is an automated email from the ASF dual-hosted git repository.

yong pushed a commit to branch branch-4.15
in repository https://gitbox.apache.org/repos/asf/bookkeeper.git

commit 32151b1602d2e7b545c9c0e00e013fd502d6a4c9
Author: ZhangJian He <sh...@gmail.com>
AuthorDate: Wed Sep 7 07:50:35 2022 +0800

    Bump snakeyaml from 1.30 to 1.31 to solve CVE-2022-25857 (#3469)
    
    (cherry picked from commit 457eaf8dbc0101deef2159e7ec1c312ab66af2db)
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index cb20f5198d..ba20c69859 100644
--- a/pom.xml
+++ b/pom.xml
@@ -171,7 +171,7 @@
     <rocksdb.version>6.29.4.1</rocksdb.version>
     <shrinkwrap.version>3.0.1</shrinkwrap.version>
     <slf4j.version>1.7.32</slf4j.version>
-    <snakeyaml.version>1.30</snakeyaml.version>
+    <snakeyaml.version>1.31</snakeyaml.version>
     <spotbugs-annotations.version>4.6.0</spotbugs-annotations.version>
     <javax-annotations-api.version>1.3.2</javax-annotations-api.version>
     <testcontainers.version>1.15.1</testcontainers.version>