You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ofbiz.apache.org by jl...@apache.org on 2021/10/14 17:35:38 UTC
[ofbiz-framework] branch release17.12 updated: Fixed: [SECURITY]
CVE-2021-42340 Apache Tomcat DoS (OFBIZ-12337)
This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch release17.12
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/release17.12 by this push:
new 2aca112 Fixed: [SECURITY] CVE-2021-42340 Apache Tomcat DoS (OFBIZ-12337)
2aca112 is described below
commit 2aca1121ee9b0dad8b50b5480e56af8d846c0a3a
Author: Jacques Le Roux <ja...@les7arts.com>
AuthorDate: Thu Oct 14 19:31:08 2021 +0200
Fixed: [SECURITY] CVE-2021-42340 Apache Tomcat DoS (OFBIZ-12337)
Upgrades to Apache Tomcat 9.0.54
---
build.gradle | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/build.gradle b/build.gradle
index 2772d9e..023e894 100644
--- a/build.gradle
+++ b/build.gradle
@@ -175,10 +175,10 @@ dependencies {
compile 'org.apache.tika:tika-parsers:1.26'
compile 'org.apache.pdfbox:pdfbox:2.0.24'
compile 'org.apache.poi:poi:3.17'
- compile 'org.apache.tomcat:tomcat-catalina-ha:9.0.48'
- compile 'org.apache.tomcat:tomcat-catalina:9.0.48'
- compile 'org.apache.tomcat:tomcat-jasper:9.0.48'
- compile 'org.apache.tomcat:tomcat-tribes:9.0.48'
+ compile 'org.apache.tomcat:tomcat-catalina-ha:9.0.54'
+ compile 'org.apache.tomcat:tomcat-catalina:9.0.54'
+ compile 'org.apache.tomcat:tomcat-jasper:9.0.54'
+ compile 'org.apache.tomcat:tomcat-tribes:9.0.54'
compile 'org.apache.xmlgraphics:fop:2.2'
compile 'org.apache.xmlrpc:xmlrpc-client:3.1.3'
compile 'org.apache.xmlrpc:xmlrpc-server:3.1.3'