Code Review / multicloud / framework.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 90cd34a)
Fix cve 07/123607/1
authorLukasz Rajewski <lukasz.rajewski@orange.com>
Thu, 26 Aug 2021 10:03:19 +0000 (12:03 +0200)
committerLukasz Rajewski <lukasz.rajewski@orange.com>
Thu, 26 Aug 2021 10:13:30 +0000 (12:13 +0200)
Fix cve: log4j, junit, jackson-databind

Issue-ID: MULTICLOUD-1384
Signed-off-by: Lukasz Rajewski <lukasz.rajewski@orange.com>
Change-Id: I48591144b984e7af5236d5f4ad270f3a3aedf548

artifactbroker/pom.xml patch | blob | history

diff --git a/artifactbroker/pom.xml b/artifactbroker/pom.xml
index 1ca0581..16fa7c6 100644 (file)
--- a/artifactbroker/pom.xml
+++ b/artifactbroker/pom.xml
@@ -57,7 +57,7 @@
         <dependency>
             <groupId>org.apache.logging.log4j</groupId>
             <artifactId>log4j-api</artifactId>
-            <version>2.13.3</version>
+            <version>2.14.1</version>
         </dependency>
         <dependency>
             <groupId>ch.qos.logback</groupId>
@@ -87,7 +87,12 @@
         <dependency>
             <groupId>com.fasterxml.jackson.core</groupId>
             <artifactId>jackson-databind</artifactId>
-            <version>2.9.8</version>
+            <version>2.12.3</version>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-core</artifactId>
+            <version>2.12.3</version>
         </dependency>
         <dependency>
             <groupId>org.json</groupId>
Common components for multicloud framework