From bb87f8d54595ed1aa07192e8ba5c96f969f620fc Mon Sep 17 00:00:00 2001 From: Ivan Date: Tue, 19 Sep 2023 11:23:21 +0100 Subject: [PATCH] Upgrade commons_compress version to fix CVE-2023-42503 (#1486) --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 056512cae..15173a250 100644 --- a/build.gradle +++ b/build.gradle @@ -58,7 +58,7 @@ subprojects { api "com.fasterxml.jackson.core:jackson-core:2.15.2" api "com.fasterxml.jackson.core:jackson-databind:2.15.2" api 'org.bouncycastle:bcprov-jdk18on:1.74' - api 'org.apache.commons:commons-compress:1.23.0' + api 'org.apache.commons:commons-compress:1.24.0' api "org.xerial.snappy:snappy-java:1.1.10.1" compileOnly "com.github.spotbugs:spotbugs-annotations:4.7.3"