This is an automated email from the ASF dual-hosted git repository.
jbonofre pushed a commit to branch karaf-4.3.x
in repository https://gitbox.apache.org/repos/asf/karaf.git
The following commit(s) were added to refs/heads/karaf-4.3.x by this push:
new 45117823da KARAF-7712 - Upgrade to Sling common johnzon 1.2.16
(johnzon 1.2.21) to fix CVE-2023-33008
45117823da is described below
commit 45117823da42006804246787025fd74d6d21c77d
Author: Colm O hEigeartaigh <cohei...@apache.org>
AuthorDate: Thu Jul 27 07:43:08 2023 +0100
KARAF-7712 - Upgrade to Sling common johnzon 1.2.16 (johnzon 1.2.21) to fix
CVE-2023-33008
(cherry picked from commit f426ad082fac73487612f0ec411ff7655b8d86ae)
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index ac1efec897..b4128f9bfe 100644
--- a/pom.xml
+++ b/pom.xml
@@ -333,7 +333,7 @@
<spring.security56.version>5.6.3_1</spring.security56.version>
<spring.security57.version>5.7.3_1</spring.security57.version>
- <sling.commons.johnzon.version>1.2.14</sling.commons.johnzon.version>
+ <sling.commons.johnzon.version>1.2.16</sling.commons.johnzon.version>
<sshd.version>2.10.0</sshd.version>
<struts.bundle.version>1.3.10_1</struts.bundle.version>
<xbean.version>4.22</xbean.version>
