Skip to content

Commit

Permalink
Upgrade Apache Commons Text to 1.10.0 (hyperledger#4542)
Browse files Browse the repository at this point in the history 
* upgraded Apache Commons Text to fix CVE-2022-42889

Signed-off-by: Daniel Lehrner <daniel.lehrner@consensys.net>

* add changelog

Signed-off-by: garyschulte <garyschulte@gmail.com>

Signed-off-by: Daniel Lehrner <daniel.lehrner@consensys.net>
Signed-off-by: garyschulte <garyschulte@gmail.com>
Co-authored-by: garyschulte <garyschulte@gmail.com>
  • Loading branch information
@daniellehrner @garyschulte
daniellehrner and garyschulte authored Oct 19, 2022
1 parent ec13809 commit e0b31e9
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@
- Avoid a cyclic reference while printing EngineExchangeTransitionConfigurationParameter [#4357](https://github.com/hyperledger/besu/pull/4357)
- Corrects treating a block as bad on internal error [#4512](https://github.com/hyperledger/besu/issues/4512)
- In GraphQL update scalar parsing to be variable friendly [#4522](https://github.com/hyperledger/besu/pull/4522)
- update appache-commons-text to 1.10.0 to address CVE-2022-42889 [#4542](https://github.com/hyperledger/besu/pull/4542)

### Download Links

Expand Down
2 changes: 1 addition & 1 deletion gradle/versions.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -122,7 +122,7 @@ dependencyManagement {

dependency 'org.apache.commons:commons-compress:1.21'
dependency 'org.apache.commons:commons-lang3:3.12.0'
dependency 'org.apache.commons:commons-text:1.9'
dependency 'org.apache.commons:commons-text:1.10.0'

dependency 'org.apache.logging.log4j:log4j-api:2.17.2'
dependency 'org.apache.logging.log4j:log4j-core:2.17.2'
Expand Down

0 comments on commit e0b31e9

Please sign in to comment.