This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/trunk by this push:
new 14b97433de Fixed: [SECURITY] Several CVEs in Apache Tomcat
(OFBIZ-12860)
14b97433de is described below
commit 14b97433ded543211a812277fe55b7fc9f241108
Author: Jacques Le Roux <jacques.le.r...@les7arts.com>
AuthorDate: Wed Oct 11 11:21:37 2023 +0200
Fixed: [SECURITY] Several CVEs in Apache Tomcat (OFBIZ-12860)
Concerns CVE-2023-42795, CVE-2023-44487 and CVE-2023-45648
See https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81
for details
---
build.gradle | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/build.gradle b/build.gradle
index 86ae326e8b..c67ada2cad 100644
--- a/build.gradle
+++ b/build.gradle
@@ -250,8 +250,8 @@ dependencies {
implementation 'org.apache.tika:tika-parsers:2.5.0'
implementation 'org.apache.tika:tika-parser-pdf-module:2.5.0'
implementation 'org.apache.cxf:cxf-rt-frontend-jaxrs:3.5.6'
- implementation 'org.apache.tomcat:tomcat-catalina-ha:9.0.80' // Remember
to change the version number (9 now) in javadoc block if needed.
- implementation 'org.apache.tomcat:tomcat-jasper:9.0.80'
+ implementation 'org.apache.tomcat:tomcat-catalina-ha:9.0.81' // Remember
to change the version number (9 now) in javadoc block if needed.
+ implementation 'org.apache.tomcat:tomcat-jasper:9.0.81'
implementation 'org.apache.axis2:axis2-kernel:1.8.2'
implementation 'org.apache.xmlgraphics:batik-anim:1.17'
implementation 'org.apache.xmlgraphics:batik-util:1.17'
