See <https://ci-builds.apache.org/job/PDFBox/job/PDFBox-Trunk-jdk20/org.apache.pdfbox$pdfbox-parent/656/display/redirect?page=changes>
Changes: [Tilman Hausherr] PDFBOX-4892: update owasp plugin ------------------------------------------ [...truncated 10.57 KB...] [INFO] Downloaded from central: https://repo.maven.apache.org/maven2/org/owasp/dependency-check-utils/7.4.4/dependency-check-utils-7.4.4.jar (56 kB at 151 kB/s) [INFO] Checking for updates [INFO] NVD CVE requires several updates; this could take a couple of minutes. [INFO] Download Started for NVD CVE - 2002 [INFO] Download Complete for NVD CVE - 2002 (643 ms) [INFO] Processing Started for NVD CVE - 2002 [INFO] Download Started for NVD CVE - 2003 [INFO] Download Complete for NVD CVE - 2003 (519 ms) [INFO] Processing Started for NVD CVE - 2003 [INFO] Processing Complete for NVD CVE - 2003 (2345 ms) [INFO] Download Started for NVD CVE - 2004 [INFO] Processing Complete for NVD CVE - 2002 (8665 ms) [INFO] Download Complete for NVD CVE - 2004 (551 ms) [INFO] Processing Started for NVD CVE - 2004 [INFO] Processing Complete for NVD CVE - 2004 (3117 ms) [INFO] Download Started for NVD CVE - 2005 [INFO] Download Complete for NVD CVE - 2005 (626 ms) [INFO] Processing Started for NVD CVE - 2005 [INFO] Download Started for NVD CVE - 2006 [INFO] Download Complete for NVD CVE - 2006 (654 ms) [INFO] Processing Started for NVD CVE - 2006 [INFO] Processing Complete for NVD CVE - 2005 (5523 ms) [INFO] Download Started for NVD CVE - 2007 [INFO] Download Complete for NVD CVE - 2007 (705 ms) [INFO] Processing Started for NVD CVE - 2007 [INFO] Download Started for NVD CVE - 2008 [INFO] Download Complete for NVD CVE - 2008 (712 ms) [INFO] Processing Started for NVD CVE - 2008 [INFO] Processing Complete for NVD CVE - 2006 (10092 ms) [INFO] Processing Complete for NVD CVE - 2007 (8331 ms) [INFO] Download Started for NVD CVE - 2009 [INFO] Download Complete for NVD CVE - 2009 (655 ms) [INFO] Processing Started for NVD CVE - 2009 [INFO] Download Started for NVD CVE - 2010 [INFO] Download Complete for NVD CVE - 2010 (633 ms) [INFO] Processing Started for NVD CVE - 2010 [INFO] Processing Complete for NVD CVE - 2008 (10528 ms) [INFO] Download Started for NVD CVE - 2011 [INFO] Download Complete for NVD CVE - 2011 (632 ms) [INFO] Processing Started for NVD CVE - 2011 [INFO] Processing Complete for NVD CVE - 2009 (10477 ms) [INFO] Download Started for NVD CVE - 2012 [INFO] Download Complete for NVD CVE - 2012 (643 ms) [INFO] Processing Started for NVD CVE - 2012 [INFO] Processing Complete for NVD CVE - 2010 (12893 ms) [INFO] Download Started for NVD CVE - 2013 [INFO] Download Complete for NVD CVE - 2013 (662 ms) [INFO] Processing Started for NVD CVE - 2013 [INFO] Download Started for NVD CVE - 2014 [INFO] Download Complete for NVD CVE - 2014 (623 ms) [INFO] Processing Started for NVD CVE - 2014 [INFO] Processing Complete for NVD CVE - 2011 (14180 ms) [INFO] Download Started for NVD CVE - 2015 [INFO] Download Complete for NVD CVE - 2015 (725 ms) [INFO] Processing Started for NVD CVE - 2015 [INFO] Download Started for NVD CVE - 2016 [INFO] Download Complete for NVD CVE - 2016 (699 ms) [INFO] Processing Started for NVD CVE - 2016 [INFO] Processing Complete for NVD CVE - 2012 (20748 ms) [INFO] Download Started for NVD CVE - 2017 [INFO] Download Complete for NVD CVE - 2017 (712 ms) [INFO] Processing Started for NVD CVE - 2017 [INFO] Processing Complete for NVD CVE - 2013 (22575 ms) [INFO] Download Started for NVD CVE - 2018 [INFO] Processing Complete for NVD CVE - 2014 (18782 ms) [INFO] Download Complete for NVD CVE - 2018 (693 ms) [INFO] Processing Started for NVD CVE - 2018 [INFO] Processing Complete for NVD CVE - 2015 (16319 ms) [INFO] Download Started for NVD CVE - 2019 [INFO] Download Complete for NVD CVE - 2019 (732 ms) [INFO] Processing Started for NVD CVE - 2019 [INFO] Processing Complete for NVD CVE - 2016 (14529 ms) [INFO] Download Started for NVD CVE - 2020 [INFO] Download Complete for NVD CVE - 2020 (805 ms) [INFO] Processing Started for NVD CVE - 2020 [INFO] Download Started for NVD CVE - 2021 [INFO] Download Complete for NVD CVE - 2021 (765 ms) [INFO] Processing Started for NVD CVE - 2021 [INFO] Processing Complete for NVD CVE - 2017 (19677 ms) [INFO] Download Started for NVD CVE - 2022 [INFO] Download Complete for NVD CVE - 2022 (729 ms) [INFO] Processing Started for NVD CVE - 2022 [INFO] Processing Complete for NVD CVE - 2019 (20267 ms) [INFO] Processing Complete for NVD CVE - 2020 (20633 ms) [INFO] Processing Complete for NVD CVE - 2022 (17371 ms) [ERROR] org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to retrieve id for new vulnerability for 'CVE-2021-23044' org.owasp.dependencycheck.data.update.exception.UpdateException: org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to retrieve id for new vulnerability for 'CVE-2021-23044' at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:157) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41) at java.util.concurrent.FutureTask.run (FutureTask.java:317) at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144) at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642) at java.lang.Thread.run (Thread.java:1623) Caused by: org.owasp.dependencycheck.data.nvdcve.DatabaseException: Unable to retrieve id for new vulnerability for 'CVE-2021-23044' at org.owasp.dependencycheck.data.nvdcve.CveDB.updateOrInsertVulnerability (CveDB.java:990) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:811) at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41) at java.util.concurrent.FutureTask.run (FutureTask.java:317) at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144) at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642) at java.lang.Thread.run (Thread.java:1623) Caused by: org.h2.jdbc.JdbcSQLTimeoutException: Timeout trying to lock table {0}; SQL statement: DELETE FROM software WHERE cveid = ? [50200-214] at org.h2.message.DbException.getJdbcSQLException (DbException.java:560) at org.h2.message.DbException.getJdbcSQLException (DbException.java:477) at org.h2.message.DbException.get (DbException.java:212) at org.h2.command.Command.filterConcurrentUpdate (Command.java:324) at org.h2.command.Command.executeUpdate (Command.java:258) at org.h2.jdbc.JdbcPreparedStatement.executeUpdateInternal (JdbcPreparedStatement.java:209) at org.h2.jdbc.JdbcPreparedStatement.executeUpdate (JdbcPreparedStatement.java:169) at org.owasp.dependencycheck.data.nvdcve.H2Functions.updateVulnerability (H2Functions.java:226) at jdk.internal.reflect.DirectMethodHandleAccessor.invoke (DirectMethodHandleAccessor.java:104) at java.lang.reflect.Method.invoke (Method.java:578) at org.h2.schema.FunctionAlias$JavaMethod.execute (FunctionAlias.java:495) at org.h2.schema.FunctionAlias$JavaMethod.getTableValue (FunctionAlias.java:363) at org.h2.expression.function.table.JavaTableFunction.getValue (JavaTableFunction.java:34) at org.h2.table.FunctionTable.getResult (FunctionTable.java:51) at org.h2.index.VirtualConstructedTableIndex.find (VirtualConstructedTableIndex.java:38) at org.h2.index.IndexCursor.find (IndexCursor.java:161) at org.h2.table.TableFilter.next (TableFilter.java:394) at org.h2.command.query.Select$LazyResultQueryFlat.fetchNextRow (Select.java:1832) at org.h2.result.LazyResult.hasNext (LazyResult.java:78) at org.h2.result.FetchedResult.next (FetchedResult.java:34) at org.h2.command.query.Select.queryFlat (Select.java:728) at org.h2.command.query.Select.queryWithoutCache (Select.java:833) at org.h2.command.query.Query.queryWithoutCacheLazyCheck (Query.java:197) at org.h2.command.query.Query.query (Query.java:512) at org.h2.command.query.Query.query (Query.java:475) at org.h2.command.CommandContainer.query (CommandContainer.java:251) at org.h2.command.Command.executeQuery (Command.java:190) at org.h2.jdbc.JdbcPreparedStatement.executeQuery (JdbcPreparedStatement.java:128) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateOrInsertVulnerability (CveDB.java:985) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:811) at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41) at java.util.concurrent.FutureTask.run (FutureTask.java:317) at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144) at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642) at java.lang.Thread.run (Thread.java:1623) Caused by: org.h2.message.DbException: Row "22732248" not found in primary index "PUBLIC.SOFTWARE_DATA" [90143-214] at org.h2.message.DbException.get (DbException.java:223) at org.h2.mvstore.db.MVPrimaryIndex.getRow (MVPrimaryIndex.java:265) at org.h2.mvstore.db.MVTable.getRow (MVTable.java:331) at org.h2.mvstore.db.MVSecondaryIndex$MVStoreCursor.get (MVSecondaryIndex.java:421) at org.h2.index.IndexCursor.get (IndexCursor.java:270) at org.h2.table.TableFilter.get (TableFilter.java:515) at org.h2.command.dml.Delete.update (Delete.java:59) at org.h2.command.dml.DataChangeStatement.update (DataChangeStatement.java:74) at org.h2.command.CommandContainer.update (CommandContainer.java:169) at org.h2.command.Command.executeUpdate (Command.java:252) at org.h2.jdbc.JdbcPreparedStatement.executeUpdateInternal (JdbcPreparedStatement.java:209) at org.h2.jdbc.JdbcPreparedStatement.executeUpdate (JdbcPreparedStatement.java:169) at org.owasp.dependencycheck.data.nvdcve.H2Functions.updateVulnerability (H2Functions.java:226) at jdk.internal.reflect.DirectMethodHandleAccessor.invoke (DirectMethodHandleAccessor.java:104) at java.lang.reflect.Method.invoke (Method.java:578) at org.h2.schema.FunctionAlias$JavaMethod.execute (FunctionAlias.java:495) at org.h2.schema.FunctionAlias$JavaMethod.getTableValue (FunctionAlias.java:363) at org.h2.expression.function.table.JavaTableFunction.getValue (JavaTableFunction.java:34) at org.h2.table.FunctionTable.getResult (FunctionTable.java:51) at org.h2.index.VirtualConstructedTableIndex.find (VirtualConstructedTableIndex.java:38) at org.h2.index.IndexCursor.find (IndexCursor.java:161) at org.h2.table.TableFilter.next (TableFilter.java:394) at org.h2.command.query.Select$LazyResultQueryFlat.fetchNextRow (Select.java:1832) at org.h2.result.LazyResult.hasNext (LazyResult.java:78) at org.h2.result.FetchedResult.next (FetchedResult.java:34) at org.h2.command.query.Select.queryFlat (Select.java:728) at org.h2.command.query.Select.queryWithoutCache (Select.java:833) at org.h2.command.query.Query.queryWithoutCacheLazyCheck (Query.java:197) at org.h2.command.query.Query.query (Query.java:512) at org.h2.command.query.Query.query (Query.java:475) at org.h2.command.CommandContainer.query (CommandContainer.java:251) at org.h2.command.Command.executeQuery (Command.java:190) at org.h2.jdbc.JdbcPreparedStatement.executeQuery (JdbcPreparedStatement.java:128) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateOrInsertVulnerability (CveDB.java:985) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:811) at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41) at java.util.concurrent.FutureTask.run (FutureTask.java:317) at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144) at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642) at java.lang.Thread.run (Thread.java:1623) Caused by: org.h2.jdbc.JdbcSQLTransientException: Row "22732248" not found in primary index "PUBLIC.SOFTWARE_DATA" [90143-214] at org.h2.message.DbException.getJdbcSQLException (DbException.java:682) at org.h2.message.DbException.getJdbcSQLException (DbException.java:477) at org.h2.message.DbException.get (DbException.java:223) at org.h2.mvstore.db.MVPrimaryIndex.getRow (MVPrimaryIndex.java:265) at org.h2.mvstore.db.MVTable.getRow (MVTable.java:331) at org.h2.mvstore.db.MVSecondaryIndex$MVStoreCursor.get (MVSecondaryIndex.java:421) at org.h2.index.IndexCursor.get (IndexCursor.java:270) at org.h2.table.TableFilter.get (TableFilter.java:515) at org.h2.command.dml.Delete.update (Delete.java:59) at org.h2.command.dml.DataChangeStatement.update (DataChangeStatement.java:74) at org.h2.command.CommandContainer.update (CommandContainer.java:169) at org.h2.command.Command.executeUpdate (Command.java:252) at org.h2.jdbc.JdbcPreparedStatement.executeUpdateInternal (JdbcPreparedStatement.java:209) at org.h2.jdbc.JdbcPreparedStatement.executeUpdate (JdbcPreparedStatement.java:169) at org.owasp.dependencycheck.data.nvdcve.H2Functions.updateVulnerability (H2Functions.java:226) at jdk.internal.reflect.DirectMethodHandleAccessor.invoke (DirectMethodHandleAccessor.java:104) at java.lang.reflect.Method.invoke (Method.java:578) at org.h2.schema.FunctionAlias$JavaMethod.execute (FunctionAlias.java:495) at org.h2.schema.FunctionAlias$JavaMethod.getTableValue (FunctionAlias.java:363) at org.h2.expression.function.table.JavaTableFunction.getValue (JavaTableFunction.java:34) at org.h2.table.FunctionTable.getResult (FunctionTable.java:51) at org.h2.index.VirtualConstructedTableIndex.find (VirtualConstructedTableIndex.java:38) at org.h2.index.IndexCursor.find (IndexCursor.java:161) at org.h2.table.TableFilter.next (TableFilter.java:394) at org.h2.command.query.Select$LazyResultQueryFlat.fetchNextRow (Select.java:1832) at org.h2.result.LazyResult.hasNext (LazyResult.java:78) at org.h2.result.FetchedResult.next (FetchedResult.java:34) at org.h2.command.query.Select.queryFlat (Select.java:728) at org.h2.command.query.Select.queryWithoutCache (Select.java:833) at org.h2.command.query.Query.queryWithoutCacheLazyCheck (Query.java:197) at org.h2.command.query.Query.query (Query.java:512) at org.h2.command.query.Query.query (Query.java:475) at org.h2.command.CommandContainer.query (CommandContainer.java:251) at org.h2.command.Command.executeQuery (Command.java:190) at org.h2.jdbc.JdbcPreparedStatement.executeQuery (JdbcPreparedStatement.java:128) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeQuery (DelegatingPreparedStatement.java:122) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateOrInsertVulnerability (CveDB.java:985) at org.owasp.dependencycheck.data.nvdcve.CveDB.updateVulnerability (CveDB.java:811) at org.owasp.dependencycheck.data.update.nvd.NvdCveParser.parse (NvdCveParser.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.importJSON (ProcessTask.java:141) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.processFiles (ProcessTask.java:154) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:114) at org.owasp.dependencycheck.data.update.nvd.ProcessTask.call (ProcessTask.java:41) at java.util.concurrent.FutureTask.run (FutureTask.java:317) at java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1144) at java.util.concurrent.ThreadPoolExecutor$Worker.run (ThreadPoolExecutor.java:642) at java.lang.Thread.run (Thread.java:1623) [INFO] Skipping RetireJS update since last update was within 24 hours. [WARNING] Unable to update 1 or more Cached Web DataSource, using local data instead. Results may not include recent vulnerabilities. [ERROR] Unable to continue dependency-check analysis. [WARNING] Attempt to (de-)serialize anonymous class org.jfrog.hudson.maven2.MavenDependenciesRecorder$1; see: https://jenkins.io/redirect/serialization-of-anonymous-classes/ --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
