This is an automated email from the ASF dual-hosted git repository.
pgil pushed a commit to branch release22.01
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/release22.01 by this push:
new 1779d8ced1 Improved: Upgrade zip4j to 2.11.5 (OFBIZ-12844)
1779d8ced1 is described below
commit 1779d8ced1ea1ab0fe26e8e1db53b668b47c59dd
Author: Gil <gil.portensei...@nereide.fr>
AuthorDate: Fri Aug 18 15:21:23 2023 +0200
Improved: Upgrade zip4j to 2.11.5 (OFBIZ-12844)
This upgrade fix one CVE (CVE-2023-22899) and add some improvment and
bugfixes : https://github.com/srikanth-lingala/zip4j/releases
---
build.gradle | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/build.gradle b/build.gradle
index eac8bb299a..95e6f357bd 100644
--- a/build.gradle
+++ b/build.gradle
@@ -219,7 +219,7 @@ dependencies {
implementation 'de.odysseus.juel:juel-impl:2.2.7'
implementation 'javax.transaction:javax.transaction-api:1.3'
implementation 'net.fortuna.ical4j:ical4j:1.0-rc4-atlassian-12'
- implementation 'net.lingala.zip4j:zip4j:2.9.0'
+ implementation 'net.lingala.zip4j:zip4j:2.11.5'
implementation 'org.apache.ant:ant-junit:1.10.11'
implementation 'org.apache.commons:commons-collections4:4.4'
implementation 'org.apache.commons:commons-csv:1.9.0'
