Skip to content
This repository has been archived by the owner on May 16, 2023. It is now read-only.

Commit

Permalink
Downgrade Spring Vault to 2.3.3
Browse files Browse the repository at this point in the history
  • Loading branch information
f11h committed Mar 29, 2023
1 parent 4d6fc3b commit da595dd
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 1 deletion.
10 changes: 10 additions & 0 deletions owasp/suppressions.xml
Original file line number Diff line number Diff line change
Expand Up @@ -50,4 +50,14 @@
<cve>CVE-2020-8908</cve>
</suppress>

<suppress>
<notes>No recent version with fix available</notes>
<cve>CVE-2023-20859</cve>
</suppress>

<suppress>
<notes>Issue adresses Keycloak Server and not Lib</notes>
<cve>CVE-2023-1664</cve>
</suppress>

</suppressions>
2 changes: 1 addition & 1 deletion pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -85,7 +85,7 @@
<dependency>
<groupId>org.springframework.vault</groupId>
<artifactId>spring-vault-core</artifactId>
<version>3.0.2</version>
<version>2.3.3</version>
</dependency>
<dependency>
<groupId>commons-fileupload</groupId>
Expand Down

0 comments on commit da595dd

Please sign in to comment.