Merge pull request #2610 from cyberark/dependabot/bundler/docs/tzinfo…

…-1.2.10 Bump tzinfo from 1.2.9 to 1.2.10 in /docs
cyberark · Jul 22, 2022 · 9a57a04 · 9a57a04
2 parents 73e9769 + c5314d3
commit 9a57a04
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -14,6 +14,10 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - Adds support for authentication using OIDC's code authorization flow
   [cyberark/conjur#2595](https://github.com/cyberark/conjur/pull/2595)
 
+### Security
+- Updated tzinfo to 1.2.10 to address CVE-2022-31163
+  [cyberark/conjur#2610](https://github.com/cyberark/conjur/pull/2610)
+
 ## [1.17.8] - 2022-07-14
 
 ### Security

diff --git a/docs/Gemfile.lock b/docs/Gemfile.lock
@@ -270,7 +270,7 @@ GEM
     thread_safe (0.3.6)
     typhoeus (1.4.0)
       ethon (>= 0.9.0)
-    tzinfo (1.2.9)
+    tzinfo (1.2.10)
       thread_safe (~> 0.1)
     unf (0.1.4)
       unf_ext