This is an automated email from the ASF dual-hosted git repository.
twolf pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/mina-sshd.git
The following commit(s) were added to refs/heads/master by this push:
new fc3412ed1 Bump jgit.version from 5.13.3.202401111512-r to
5.13.5.202508271544-r (#831)
fc3412ed1 is described below
commit fc3412ed136f46f165e2eee6dbd42ee437c9e433
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Wed Oct 8 22:43:02 2025 +0200
Bump jgit.version from 5.13.3.202401111512-r to 5.13.5.202508271544-r (#831)
Fixes CVE-2025-4949[1].
[1] https://www.cve.org/CVERecord?id=CVE-2025-4949
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 83dab1782..fc2ca84a2 100644
--- a/pom.xml
+++ b/pom.xml
@@ -108,7 +108,7 @@
<logback.version>1.2.13</logback.version>
<spring.version>5.3.39</spring.version>
<!-- NOTE: upgrading jGit to 6.x requires Java 11 -->
- <jgit.version>5.13.3.202401111512-r</jgit.version>
+ <jgit.version>5.13.5.202508271544-r</jgit.version>
<!-- mockito 5.0 requires Java 11. -->
<mockito.version>4.11.0</mockito.version>
<testcontainers.version>1.21.3</testcontainers.version>
