From d0a6f381545371eeceb17532c083c7ed110376d2 Mon Sep 17 00:00:00 2001 From: Josh Aguilar <87738724+jaguilar-atl@users.noreply.github.com> Date: Thu, 27 Jul 2023 19:24:45 +1200 Subject: [PATCH] Update guava to address CVE-2023-2976 (#1903) Signed-off-by: Josh Aguilar --- build.gradle | 2 +- integ-test/build.gradle | 2 +- plugin/build.gradle | 2 +- sql-jdbc/build.gradle | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/build.gradle b/build.gradle index 001852ec26..6f3f5f0524 100644 --- a/build.gradle +++ b/build.gradle @@ -144,7 +144,7 @@ configurations.all { exclude group: "commons-logging", module: "commons-logging" // enforce 1.1.3, https://www.whitesourcesoftware.com/vulnerability-database/WS-2019-0379 resolutionStrategy.force 'commons-codec:commons-codec:1.13' - resolutionStrategy.force 'com.google.guava:guava:31.0.1-jre' + resolutionStrategy.force 'com.google.guava:guava:32.0.1-jre' } // updateVersion: Task to auto increment to the next development iteration diff --git a/integ-test/build.gradle b/integ-test/build.gradle index d221bf68d4..6d02a8bb4e 100644 --- a/integ-test/build.gradle +++ b/integ-test/build.gradle @@ -51,7 +51,7 @@ configurations.all { exclude group: "commons-logging", module: "commons-logging" // enforce 1.1.3, https://www.whitesourcesoftware.com/vulnerability-database/WS-2019-0379 resolutionStrategy.force 'commons-codec:commons-codec:1.13' - resolutionStrategy.force 'com.google.guava:guava:31.0.1-jre' + resolutionStrategy.force 'com.google.guava:guava:32.0.1-jre' } dependencies { diff --git a/plugin/build.gradle b/plugin/build.gradle index bd38048c01..fc4f7a5984 100644 --- a/plugin/build.gradle +++ b/plugin/build.gradle @@ -58,7 +58,7 @@ configurations.all { exclude group: "commons-logging", module: "commons-logging" // enforce 1.1.3, https://www.whitesourcesoftware.com/vulnerability-database/WS-2019-0379 resolutionStrategy.force 'commons-codec:commons-codec:1.13' - resolutionStrategy.force 'com.google.guava:guava:31.0.1-jre' + resolutionStrategy.force 'com.google.guava:guava:32.0.1-jre' } dependencies { diff --git a/sql-jdbc/build.gradle b/sql-jdbc/build.gradle index ffbb4b8d0d..1ecea9e993 100644 --- a/sql-jdbc/build.gradle +++ b/sql-jdbc/build.gradle @@ -58,7 +58,7 @@ dependencies { testImplementation('org.eclipse.jetty:jetty-server:11.0.14') // Enforce wiremock to use latest guava - testImplementation('com.google.guava:guava:31.1-jre') + testImplementation('com.google.guava:guava:32.0.1-jre') testRuntimeOnly('org.slf4j:slf4j-simple:1.7.25') // capture WireMock logging }