File tree Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Expand file tree Collapse file tree 1 file changed +5
-2
lines changed Original file line number Diff line number Diff line change @@ -214,13 +214,16 @@ dependencyManagement {
214214 }
215215 dependencies {
216216 // CVE-2022-1471
217- dependency group :' org.yaml' name :' snakeyaml' version :' 2.0 '
217+ dependency group :' org.yaml' name :' snakeyaml' version :' 2.4 '
218218
219219 // CVE-2023-6378, CVE-2023-6481
220220 dependencySet(group : ' ch.qos.logback' version : ' 1.2.13'
221221 entry ' logback-core'
222222 entry ' logback-classic'
223223 }
224+
225+ // CVE-2025-48924
226+ dependency group : ' org.apache.commons' name : ' commons-lang3' version : ' 3.18.0'
224227 }
225228}
226229
@@ -261,7 +264,7 @@ dependencies {
261264 implementation group : ' org.elasticsearch' name : ' elasticsearch' version : ' 7.17.10'
262265
263266 implementation group : ' org.apache.commons' name : ' commons-collections4' version : ' 4.4'
264- implementation group : ' org.apache.commons' name : ' commons-text' version : ' 1.10 .0'
267+ implementation group : ' org.apache.commons' name : ' commons-text' version : ' 1.14 .0'
265268
266269 implementation group : ' com.fasterxml.jackson.core' name : ' jackson-core' version : versions. jackson
267270 implementation group : ' com.fasterxml.jackson.core' name : ' jackson-annotations' version : versions. jackson
You can’t perform that action at this time.
0 commit comments