(pulsar) branch master updated: [fix][sec] Upgrade vertx to 4.5.10 to address CVE-2024-8391 (#23338)

Mon, 23 Sep 2024 06:37:45 -0700 

This is an automated email from the ASF dual-hosted git repository.

lhotari pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pulsar.git


The following commit(s) were added to refs/heads/master by this push:
     new 501dfdeace9 [fix][sec] Upgrade vertx to 4.5.10 to address 
CVE-2024-8391 (#23338)
501dfdeace9 is described below

commit 501dfdeace9ef321acbdc5ce32d98eb3e56e083a
Author: Lari Hotari <[email protected]>
AuthorDate: Mon Sep 23 16:37:33 2024 +0300

    [fix][sec] Upgrade vertx to 4.5.10 to address CVE-2024-8391 (#23338)
---
 distribution/server/src/assemble/LICENSE.bin.txt | 10 +++++-----
 pom.xml                                          |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/distribution/server/src/assemble/LICENSE.bin.txt 
b/distribution/server/src/assemble/LICENSE.bin.txt
index 579613b0d8f..1d78913849b 100644
--- a/distribution/server/src/assemble/LICENSE.bin.txt
+++ b/distribution/server/src/assemble/LICENSE.bin.txt
@@ -491,11 +491,11 @@ The Apache Software License, Version 2.0
   * JCTools - Java Concurrency Tools for the JVM
     - org.jctools-jctools-core-2.1.2.jar
   * Vertx
-    - io.vertx-vertx-auth-common-4.5.8.jar
-    - io.vertx-vertx-bridge-common-4.5.8.jar
-    - io.vertx-vertx-core-4.5.8.jar
-    - io.vertx-vertx-web-4.5.8.jar
-    - io.vertx-vertx-web-common-4.5.8.jar
+    - io.vertx-vertx-auth-common-4.5.10.jar
+    - io.vertx-vertx-bridge-common-4.5.10.jar
+    - io.vertx-vertx-core-4.5.10.jar
+    - io.vertx-vertx-web-4.5.10.jar
+    - io.vertx-vertx-web-common-4.5.10.jar
   * Apache ZooKeeper
     - org.apache.zookeeper-zookeeper-3.9.2.jar
     - org.apache.zookeeper-zookeeper-jute-3.9.2.jar
diff --git a/pom.xml b/pom.xml
index dda7f316acc..1f7ecd3b90c 100644
--- a/pom.xml
+++ b/pom.xml
@@ -155,7 +155,7 @@ flexible messaging model and an intuitive client 
API.</description>
     <jersey.version>2.42</jersey.version>
     <athenz.version>1.10.50</athenz.version>
     <prometheus.version>0.16.0</prometheus.version>
-    <vertx.version>4.5.8</vertx.version>
+    <vertx.version>4.5.10</vertx.version>
     <rocksdb.version>7.9.2</rocksdb.version>
     <slf4j.version>2.0.13</slf4j.version>
     <commons.collections4.version>4.4</commons.collections4.version>

Reply via email to