Skip to content

Update versions of vulnerable packages#1922

Merged
AnatolyPristensky merged 1 commit intomasterfrom
fix-vulnerabiliies-issues
Apr 14, 2022
Merged

Update versions of vulnerable packages#1922
AnatolyPristensky merged 1 commit intomasterfrom
fix-vulnerabiliies-issues

Conversation

@AnatolyPristensky
Copy link
Copy Markdown
Contributor

@AnatolyPristensky AnatolyPristensky commented Apr 14, 2022

This PR fixes the following vulnerability issues:

GHSA-36p3-wjmg-h94x |org.springframework:spring-beans 5.1.6.RELEASE|Critical
GHSA-36p3-wjmg-h94x |org.springframework:spring-core 5.1.6.RELEASE|Critical
GHSA-f62v-xpxf-3v68 |org.apache.ant:ant 1.10.3 |High
GHSA-8hfj-j24r-96c4 |moment 2.29.1 |High
WS-2021-0419 |com.google.code.gson:gson 2.8.5 |High
GHSA-7r82-7xv7-xcpj |org.apache.httpcomponents:httpclient 4.5.8|Medium
GHSA-4p6w-m9wc-c9c9 |org.apache.ant:ant 1.10.3 |Medium
CVE-2021-22096 |org.springframework:spring-core 5.1.6.RELEASE|Medium
GHSA-q5r4-cfpx-h6fh |org.apache.ant:ant 1.10.3 |Medium
GHSA-5v34-g2px-j4fw |org.apache.ant:ant 1.10.3 |Medium
GHSA-558x-2xjg-6232 |org.springframework:spring-core 5.1.6.RELEASE|Medium
GHSA-558x-2xjg-6232 |org.springframework:spring-expression 5.1.6.RELEASE|Medium

@AnatolyPristensky AnatolyPristensky merged commit 10347bb into master Apr 14, 2022
@AnatolyPristensky AnatolyPristensky deleted the fix-vulnerabiliies-issues branch April 14, 2022 12:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@MatkovIvan MatkovIvan MatkovIvan approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@AnatolyPristensky @MatkovIvan