summaryrefslogtreecommitdiffstats
path: root/dependencies-bom
diff options
context:
space:
mode:
authorJohnKeeney <john.keeney@est.tech>2022-11-01 18:38:33 +0000
committerJohnKeeney <john.keeney@est.tech>2022-11-01 18:38:57 +0000
commitb43680f734d219d5ae2a1132f9286c62e6cf2503 (patch)
tree297604784920d63daa66ee15bfc829f98c52f944 /dependencies-bom
parentfec4cefc3523e0879238af84da5557c6ca6f4615 (diff)
Update 3PPs
jackson-bom -> 2.13.4.2 (via spring-boot-starter:jar:2.6.11) to address CVE-2020-36518 & CVE-2022-42003 & CVE-2022-42004 log4j -> 2.17.2 Issue-ID: CCSDK-3618 Change-Id: Ic1660b18ebc2f9519bcbd5f767a0f22d2a1dd0db Signed-off-by: JohnKeeney <john.keeney@est.tech>
Diffstat (limited to 'dependencies-bom')
-rw-r--r--dependencies-bom/pom.xml6
1 files changed, 3 insertions, 3 deletions
diff --git a/dependencies-bom/pom.xml b/dependencies-bom/pom.xml
index 5c41c31c..20a7cf68 100644
--- a/dependencies-bom/pom.xml
+++ b/dependencies-bom/pom.xml
@@ -45,7 +45,7 @@
<groupId>com.fasterxml.jackson</groupId>
<artifactId>jackson-bom</artifactId>
<!-- ODL Aluminum has 2.10.5 -->
- <version>2.12.4</version>
+ <version>2.14.0-rc1</version>
<type>pom</type>
<scope>import</scope>
</dependency>
@@ -211,12 +211,12 @@
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-slf4j-impl</artifactId>
- <version>2.17.1</version>
+ <version>2.17.2</version>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-core</artifactId>
- <version>2.17.1</version>
+ <version>2.17.2</version>
</dependency>
<dependency>
<groupId>org.apache.tomcat</groupId>