[FLINK-3005] [core] Bump commons-collections version to fix object deserialization remote command execution vulnerability
This closes #1381 Project: http://git-wip-us.apache.org/repos/asf/flink/repo Commit: http://git-wip-us.apache.org/repos/asf/flink/commit/20612063 Tree: http://git-wip-us.apache.org/repos/asf/flink/tree/20612063 Diff: http://git-wip-us.apache.org/repos/asf/flink/diff/20612063 Branch: refs/heads/master Commit: 206120631d97898c9396d74b2450eb36af17e06a Parents: 6b253d9 Author: tedyu <yuzhih...@gmail.com> Authored: Wed Nov 18 13:56:31 2015 -0800 Committer: Stephan Ewen <se...@apache.org> Committed: Thu Nov 19 14:45:44 2015 +0100 ---------------------------------------------------------------------- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/flink/blob/20612063/pom.xml ---------------------------------------------------------------------- diff --git a/pom.xml b/pom.xml index af4ff8d..95c7b6e 100644 --- a/pom.xml +++ b/pom.xml @@ -210,7 +210,7 @@ under the License. <dependency> <groupId>commons-collections</groupId> <artifactId>commons-collections</artifactId> - <version>3.2.1</version> + <version>3.2.2</version> </dependency> <dependency>