This is an automated email from the ASF dual-hosted git repository.
penghui pushed a commit to branch branch-2.9
in repository https://gitbox.apache.org/repos/asf/pulsar.git
The following commit(s) were added to refs/heads/branch-2.9 by this push:
new 469d44daaa6 [fix][sec] File tiered storage: upgrade jettison to get
rid of CVE-2022-40149 (#18105)
469d44daaa6 is described below
commit 469d44daaa69edf2c60cca71c22206a5c7e7884f
Author: Qiang Zhao <[email protected]>
AuthorDate: Wed Oct 19 18:11:06 2022 +0800
[fix][sec] File tiered storage: upgrade jettison to get rid of
CVE-2022-40149 (#18105)
---
pom.xml | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/pom.xml b/pom.xml
index adc6c1b7415..2cf20885df0 100644
--- a/pom.xml
+++ b/pom.xml
@@ -224,6 +224,7 @@ flexible messaging model and an intuitive client
API.</description>
<skyscreamer.version>1.5.0</skyscreamer.version>
<objenesis.version>3.1</objenesis.version>
<awaitility.version>4.0.3</awaitility.version>
+ <jettison.version>1.5.1</jettison.version>
<!-- Plugin dependencies -->
<protobuf-maven-plugin.version>0.6.1</protobuf-maven-plugin.version>
@@ -798,6 +799,12 @@ flexible messaging model and an intuitive client
API.</description>
<scope>import</scope>
</dependency>
+ <dependency>
+ <groupId>org.codehaus.jettison</groupId>
+ <artifactId>jettison</artifactId>
+ <version>${jettison.version}</version>
+ </dependency>
+
<dependency>
<groupId>org.hdrhistogram</groupId>
<artifactId>HdrHistogram</artifactId>
