[GitHub] chrismattmann closed pull request #145: Fix security vulnerabilities in proteus and webapps

Sun, 05 Aug 2018 08:07:19 -0700 

chrismattmann closed pull request #145: Fix security vulnerabilities in proteus 
and webapps
URL: https://github.com/apache/drat/pull/145
 
 
   

This is a PR merged from a forked repository.
As GitHub hides the original diff on merge, it is displayed below for
the sake of provenance:

As this is a foreign pull request (from a fork), the diff is supplied
below (as it won't show otherwise due to GitHub magic):

diff --git a/proteus/pom.xml b/proteus/pom.xml
index 5f2d5e73..310845b3 100644
--- a/proteus/pom.xml
+++ b/proteus/pom.xml
@@ -29,7 +29,7 @@
         <name>DRAT Proteus</name>
         <artifactId>dms-proteus</artifactId>
         <packaging>war</packaging>
-        <description></description>
+        <description/>
        <licenses>
                <license>
                        <name>The Apache Software License, Version 2.0</name>
@@ -38,8 +38,8 @@
                </license>
        </licenses>
        <properties>
-               <wicket.version>7.8.0</wicket.version>
-               <log4j.version>2.3</log4j.version>
+               <wicket.version>8.0.0</wicket.version>
+               <log4j.version>2.8.2</log4j.version>
                
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
         <cxf.version>2.2.3</cxf.version>
         <!-- allowed values: R7, 1.0, 1.5, 2.0 or none -->
@@ -75,13 +75,13 @@
         <dependency>
             <groupId>org.apache.cxf</groupId>
             <artifactId>cxf-rt-rs-client</artifactId>
-            <version>3.1.2</version>
+            <version>3.1.16</version>
         </dependency>
         <dependency>
             <groupId>org.apache.cxf</groupId>
             <artifactId>cxf-rt-transports-http-hc</artifactId>
             <!-- 2.7.8 or 3.0.0-milestone1 -->
-            <version>3.1.2</version>
+            <version>3.1.16</version>
         </dependency>
         <dependency>
             <groupId>org.wicketstuff</groupId>
diff --git a/webapps/solr-webapp/pom.xml b/webapps/solr-webapp/pom.xml
index ba126a97..17f4e915 100644
--- a/webapps/solr-webapp/pom.xml
+++ b/webapps/solr-webapp/pom.xml
@@ -39,7 +39,7 @@
     <dependency>
       <groupId>org.apache.solr</groupId>
       <artifactId>solr</artifactId>
-      <version>4.2.1</version>
+      <version>4.7.0</version>
       <type>war</type>
     </dependency>
 


 

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
[email protected]


With regards,
Apache Git Services

Reply via email to