This is an automated email from the ASF dual-hosted git repository. pottlinger pushed a commit to branch feature/RAT-259 in repository https://gitbox.apache.org/repos/asf/creadur-rat.git
commit 1ca482e7864aa3a47a054e144343bc5c0e8afbcf Author: Hugo Hirsch <[email protected]> AuthorDate: Mon May 18 14:17:40 2020 +0200 RAT-269: Update Apache ANT to fix CVE-2020-1945 --- pom.xml | 2 +- src/changes/changes.xml | 3 +++ 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index 04f0b33..a47cd1a 100644 --- a/pom.xml +++ b/pom.xml @@ -43,7 +43,7 @@ agnostic home for software distribution comprehension and audit tools. </description> <inceptionYear>2006</inceptionYear> <properties> - <ant.version>1.9.14</ant.version> + <ant.version>1.9.15</ant.version> <javaVersion>1.7</javaVersion> <maven.compiler.source>${javaVersion}</maven.compiler.source> <maven.compiler.target>${javaVersion}</maven.compiler.target> diff --git a/src/changes/changes.xml b/src/changes/changes.xml index cfd162d..4817f93 100644 --- a/src/changes/changes.xml +++ b/src/changes/changes.xml @@ -55,6 +55,9 @@ The <action> type attribute can be add,update,fix,remove. <body> <release version="0.14-SNAPSHOT" date="2020-xx-xx" description="Current SNAPSHOT - to be done"> + <action issue="RAT-269" type="fix" dev="pottlinger"> + Update to latest Apache Ant to fix CVE-2020-1945. + </action> <action issue="RAT-268" type="fix" due-to="Robert Scholte" dev="pottlinger"> Allow handling of pom-file-only projects by not assuming that all modules are in directories. </action>
