Skip to content

Commit

Permalink
Bump commons-compress (#5108)
Browse files Browse the repository at this point in the history 
Fixes CVE-2023-42503. Potentially relevant if trying to parse an untrusted tar file.
  • Loading branch information
@devinrsmith
devinrsmith committed Feb 1, 2024
1 parent ec5e8f7 commit 4ec4cef
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion buildSrc/src/main/groovy/io.deephaven.java-classpath-conventions.gradle
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ plugins {
// TODO(deephaven-core#1162): Adopt java-platform to manage versions
ext {
depAnnotations = 'org.jetbrains:annotations:24.0.0'
depCommonsCompress = 'org.apache.commons:commons-compress:1.22'
depCommonsCompress = 'org.apache.commons:commons-compress:1.25.0'
depCommonsLang3 = 'org.apache.commons:commons-lang3:3.12.0'
depCommonsIo = 'commons-io:commons-io:2.11.0'
depJdom2 = 'org.jdom:jdom2:2.0.6.1'
Expand Down

0 comments on commit 4ec4cef

Please sign in to comment.