From 745b4d5681133a94e507db1452b72ca1a2c19446 Mon Sep 17 00:00:00 2001 From: "Sonsino, Ofir (os0695)" Date: Tue, 3 Apr 2018 10:53:27 +0300 Subject: Fix security issues Change-Id: I9d003e30920e7cb57143743f260e4ae2a8ba52d6 Issue-ID: VID-149 Signed-off-by: Sonsino, Ofir (os0695) --- epsdk-app-onap/pom.xml | 54 +++++++++++++++++++++++++++++++++++++++++++------- pom.xml | 27 +------------------------ vid-app-common/pom.xml | 4 ++-- 3 files changed, 50 insertions(+), 35 deletions(-) diff --git a/epsdk-app-onap/pom.xml b/epsdk-app-onap/pom.xml index 646c017f..e5b88ba3 100755 --- a/epsdk-app-onap/pom.xml +++ b/epsdk-app-onap/pom.xml @@ -18,7 +18,7 @@ UTF-8 UTF-8 2.1.0 - 4.2.4.RELEASE + 4.2.9.RELEASE 4.3.11.Final true @@ -272,12 +272,34 @@ epsdk-app-common ${epsdk.version} jar + + + commons-fileupload + commons-fileupload + + + com.fasterxml.jackson.core + jackson-core + + + + + + commons-fileupload + commons-fileupload + 1.3.3 org.onap.vid vid-app-common ${project.version} war + + + com.fasterxml.jackson.core + jackson-core + + org.onap.vid @@ -291,16 +313,34 @@ org.onap.portal.sdk epsdk-core ${epsdk.version} + + + com.fasterxml.jackson.core + jackson-core + + org.onap.portal.sdk epsdk-analytics ${epsdk.version} + + + com.fasterxml.jackson.core + jackson-core + + org.onap.portal.sdk epsdk-workflow ${epsdk.version} + + + com.fasterxml.jackson.core + jackson-core + + com.att.eelf @@ -339,6 +379,12 @@ com.fasterxml.jackson.core jackson-databind 2.6.7.1 + + + com.fasterxml.jackson.core + jackson-core + + com.mchange @@ -366,12 +412,6 @@ junit 4.12 - - - org.elasticsearch - elasticsearch - 2.2.0 - org.json json diff --git a/pom.xml b/pom.xml index e4dd40c7..231d2cfb 100644 --- a/pom.xml +++ b/pom.xml @@ -259,41 +259,16 @@ commons-fileupload 1.3.3 - - org.bouncycastle - bcprov-jdk16 - 1.46 - - - xalan - xalan - 2.7.2 - org.apache.poi poi - 3.15 - - - com.thoughtworks.xstream - xstream - 1.4.10 + 3.17 org.apache.httpcomponents httpclient 4.5.3 - - com.fasterxml.jackson.core - jackson-core - 2.8.6 - - - xerces - xercesImpl - 2.11.0.SP5 - 1.2.1-SNAPSHOT diff --git a/vid-app-common/pom.xml b/vid-app-common/pom.xml index de0e0d2d..7a485228 100755 --- a/vid-app-common/pom.xml +++ b/vid-app-common/pom.xml @@ -19,7 +19,7 @@ UTF-8 UTF-8 2.1.0 - 4.2.4.RELEASE + 4.2.9.RELEASE 4.3.11.Final true @@ -307,7 +307,7 @@ com.fasterxml.jackson.core jackson-core - 2.6.3 + 2.8.6 com.fasterxml.jackson.core -- cgit 1.2.3-korg