From f71212bdc8b07274d935c1e345797ba2e68def00 Mon Sep 17 00:00:00 2001 From: Mauricio Seii Date: Thu, 27 Jul 2023 15:44:14 -0300 Subject: [PATCH 1/2] mmcc-918: fix critical vulnerability Deserialization of Untrusted Data (CVE-2019-17571) --- core/pom.xml | 2 +- examples/pom.xml | 2 +- pom.xml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/core/pom.xml b/core/pom.xml index 9146f3c..d59ab2f 100644 --- a/core/pom.xml +++ b/core/pom.xml @@ -17,7 +17,7 @@ org.apache.httpcomponents httpclient - 4.3.6 + 4.5.13 com.fasterxml.jackson.core diff --git a/examples/pom.xml b/examples/pom.xml index 7f5bfef..c1c2e8a 100644 --- a/examples/pom.xml +++ b/examples/pom.xml @@ -26,7 +26,7 @@ org.slf4j - slf4j-log4j12 + slf4j-api ${slf4j.version} diff --git a/pom.xml b/pom.xml index b3cc358..cb6132e 100644 --- a/pom.xml +++ b/pom.xml @@ -37,7 +37,7 @@ UTF-8 1.8 - 2.9.0 + 2.13.5 1.7.25 3.3.2 From 1ea110795c8a91680c817e3537c6fd3e62432f4d Mon Sep 17 00:00:00 2001 From: Mauricio Seii Date: Thu, 27 Jul 2023 16:33:51 -0300 Subject: [PATCH 2/2] Update pom.xml Build fix: update lombok version --- pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pom.xml b/pom.xml index cb6132e..8cb67b1 100644 --- a/pom.xml +++ b/pom.xml @@ -46,7 +46,7 @@ org.projectlombok lombok - 1.18.2 + 1.18.26 provided