This is an automated email from the ASF dual-hosted git repository. jleroux pushed a commit to branch release18.12 in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/release18.12 by this push: new a05f56f7bb Fixed: [SECURITY] Several CVEs in Apache Tomcat (OFBIZ-12860) a05f56f7bb is described below commit a05f56f7bb245bb9d463b157a784780fdca27fc1 Author: Jacques Le Roux <jacques.le.r...@les7arts.com> AuthorDate: Wed Oct 11 11:37:54 2023 +0200 Fixed: [SECURITY] Several CVEs in Apache Tomcat (OFBIZ-12860) Concerns CVE-2023-42795, CVE-2023-44487 and CVE-2023-45648 See https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81 for details --- build.gradle | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/build.gradle b/build.gradle index 071254837b..a05ffa459f 100644 --- a/build.gradle +++ b/build.gradle @@ -209,10 +209,10 @@ dependencies { compile 'org.apache.sshd:sshd-core:1.7.0' compile 'org.apache.tika:tika-core:1.28.4' compile 'org.apache.tika:tika-parsers:1.28.4' - compile 'org.apache.tomcat:tomcat-catalina-ha:9.0.80' - compile 'org.apache.tomcat:tomcat-catalina:9.0.80' - compile 'org.apache.tomcat:tomcat-jasper:9.0.80' - compile 'org.apache.tomcat:tomcat-tribes:9.0.80' + compile 'org.apache.tomcat:tomcat-catalina-ha:9.0.81' + compile 'org.apache.tomcat:tomcat-catalina:9.0.81' + compile 'org.apache.tomcat:tomcat-jasper:9.0.81' + compile 'org.apache.tomcat:tomcat-tribes:9.0.81' compile 'org.apache.xmlgraphics:fop:2.3' compile 'org.apache.xmlrpc:xmlrpc-client:3.1.3' compile 'org.apache.xmlrpc:xmlrpc-server:3.1.3'