From 224909a83ab3ae70596e8aaa4a89097576ff4b2c Mon Sep 17 00:00:00 2001 From: Dominik Mizyn Date: Thu, 24 Oct 2019 15:03:21 +0200 Subject: [PATCH] Security Vulnerability in pom.xml fix com.att.eelf:eelf-core@1.0.0 -> 1.0.1-oss org.hibernate:hibernate-validator@5.1.3.Final -> 6.0.17.Final org.apache.cxf:cxf-rt-rs-client@3.0.0-milestone1 -> 3.3.3 com.fasterxml.jackson.core:jackson-databind@2.8.10 -> 2.8.11.4 org.elasticsearch:elasticsearch@2.2.0 -> 7.4.1 org.apache.tomcat:tomcat-websocket@8.0.28 -> 9.0.27 org.apache.poi:poi@3.15 -> 4.1.1 org.apache.poi:poi-scratchpad@3.5-FINAL -> 4.1.1 org.quartz-scheduler:quartz@2.2.1 -> 2.3.1 org.bouncycastle:bcprov-jdk15on@1.59 -> 1.64 commons-beanutils:commons-beanutils@1.9.3 -> 1.9.4 com.orbitz.consul:consul-client@0.13.8 -> 1.3.9 com.fasterxml.jackson.jaxrs:jackson-jaxrs-json-provider@2.8.10 -> 2.10.0 org.glassfish:javax.el@2.2.6 -> 3.0.0 javax.el:javax.el-api@2.2.1.b04 -> 3.0.0 org.glassfish.jersey.connectors:jersey-jetty-connector@2.23.1 -> 2.29.1 org.owasp.esapi:esapi@2.1.0.1 -> 2.2.0.0 com.thoughtworks.xstream:xstream@1.4.10 -> 1.4.11.1 com.alibaba:fastjson@1.2.7 -> 1.2.62 Issue-ID: PORTAL-439 Change-Id: Iad0c81e47386dfbc675470cc786c764ff93998a7 Signed-off-by: Dominik Mizyn --- ecomp-portal-BE-common/pom.xml | 42 +++++++++++++++++++++--------------------- pom.xml | 3 +-- 2 files changed, 22 insertions(+), 23 deletions(-) diff --git a/ecomp-portal-BE-common/pom.xml b/ecomp-portal-BE-common/pom.xml index 1a04c40d..070ee05c 100644 --- a/ecomp-portal-BE-common/pom.xml +++ b/ecomp-portal-BE-common/pom.xml @@ -136,7 +136,7 @@ com.att.eelf eelf-core - 1.0.0-oss + 1.0.1-oss com.google.code.gson @@ -204,7 +204,7 @@ org.hibernate hibernate-validator - 5.2.5.Final + 6.0.17.Final com.fasterxml.jackson.core jackson-annotations - ${fasterxml.version} + 2.8.10 com.fasterxml.jackson.core jackson-core - ${fasterxml.version} + 2.8.10 com.fasterxml.jackson.core jackson-databind - ${fasterxml.version} + 2.8.11.4 postgresql @@ -311,7 +311,7 @@ org.elasticsearch elasticsearch - 6.8.2 + 7.4.1 org.apache.lucene @@ -338,7 +338,7 @@ org.apache.tomcat tomcat-websocket - 8.0.52 + 9.0.27 provided @@ -361,7 +361,7 @@ org.apache.poi poi - 3.17 + 4.1.1 commons-logging @@ -391,7 +391,7 @@ org.apache.poi poi-scratchpad - 3.17 + 4.1.1 commons-logging @@ -422,7 +422,7 @@ org.quartz-scheduler quartz - 2.2.1 + 2.3.1 @@ -434,7 +434,7 @@ org.bouncycastle bcprov-jdk15on - 1.60 + 1.64 commons-codec @@ -572,7 +572,7 @@ com.orbitz.consul consul-client - 1.3.6 + 1.3.9 commons-fileupload @@ -605,17 +605,17 @@ jackson-jaxrs-json-provider 2.10.0 - + - org.glassfish.web + org.glassfish javax.el - 2.2.6 + 3.0.0 javax.el - el-api - 2.2.1-b04 + javax.el-api + 3.0.0 @@ -626,7 +626,7 @@ org.glassfish.jersey.connectors jersey-jetty-connector - 2.28 + 2.29.1 @@ -672,7 +672,7 @@ com.thoughtworks.xstream xstream - 1.4.11 + 1.4.11.1 ch.qos.logback @@ -752,7 +752,7 @@ com.alibaba fastjson - 1.2.25 + 1.2.62 diff --git a/pom.xml b/pom.xml index 50674c3a..db715b2e 100644 --- a/pom.xml +++ b/pom.xml @@ -32,8 +32,7 @@ 4.3.24.RELEASE 4.2.13.RELEASE 4.3.11.Final - 2.8.10 - 1.0.0 + 2.8.11.4 0.7.6.201602180812 UTF-8 -- 2.16.6