[ofbiz-plugins] branch release22.01 updated: Fixed: CVE-2022-45143 Apache Tomcat - JsonErrorReportValve injection (OFBIZ-12737)

jleroux Mon, 09 Jan 2023 02:03:19 -0800

This is an automated email from the ASF dual-hosted git repository.

jleroux pushed a commit to branch release22.01
in repository https://gitbox.apache.org/repos/asf/ofbiz-plugins.git



The following commit(s) were added to refs/heads/release22.01 by this push:
     new 4f7aa0949 Fixed: CVE-2022-45143 Apache Tomcat - JsonErrorReportValve 
injection (OFBIZ-12737)
4f7aa0949 is described below

commit 4f7aa094969ef931e11d8372e22d0793e197eca8
Author: Jacques Le Roux <jacques.le.r...@les7arts.com>
AuthorDate: Mon Jan 9 11:02:46 2023 +0100

    Fixed: CVE-2022-45143 Apache Tomcat - JsonErrorReportValve injection 
(OFBIZ-12737)
    
    See https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.69
---
 example/build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/example/build.gradle b/example/build.gradle
index eb42651d6..73320c9ab 100644
--- a/example/build.gradle
+++ b/example/build.gradle
@@ -18,5 +18,5 @@
  */
 
 dependencies {
-    pluginLibsCompile 'org.apache.tomcat.embed:tomcat-embed-websocket:9.0.41'
+    pluginLibsCompile 'org.apache.tomcat.embed:tomcat-embed-websocket:9.0.69'
 }

[ofbiz-plugins] branch release22.01 updated: Fixed: CVE-2022-45143 Apache Tomcat - JsonErrorReportValve injection (OFBIZ-12737)

Reply via email to