Skip to content

Commit

Permalink
Bump avro to 1.11.3
Browse files Browse the repository at this point in the history
See CVE-2023-39410 for vulnerablity in avro 1.11.2 and below

Signed-off-by: Boxuan Li <[email protected]>
(cherry picked from commit a70df84)

# Conflicts:
#	pom.xml
  • Loading branch information
li-boxuan committed Oct 5, 2023
1 parent 1f7b149 commit 0dd7138
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,7 @@
<properties>
<titan.compatible-versions>1.0.0,1.1.0-SNAPSHOT</titan.compatible-versions>
<tinkerpop.version>3.5.7</tinkerpop.version>
<avro.version>1.11.3</avro.version>
<junit-platform.version>1.10.0</junit-platform.version>
<junit.version>5.10.0</junit.version>
<mockito.version>4.11.0</mockito.version>
Expand Down Expand Up @@ -743,7 +744,7 @@
<dependency>
<groupId>org.apache.avro</groupId>
<artifactId>avro</artifactId>
<version>1.11.1</version>
<version>${avro.version}</version>
</dependency>
<dependency>
<artifactId>jboss-logging</artifactId>
Expand Down

0 comments on commit 0dd7138

Please sign in to comment.