Skip to content

Commit

Permalink
v3.9.6 Vulnerability issues for 3rd party libraries fixed
Browse files Browse the repository at this point in the history
  • Loading branch information
ahmad.nouri committed Oct 6, 2023
1 parent 62375c4 commit 2eb402b
Show file tree
Hide file tree
Showing 3 changed files with 30 additions and 10 deletions.
4 changes: 4 additions & 0 deletions com.ibm.streamsx.hbase/CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,9 @@
# Changes
=========
## v3.9.6
* fix Vulnerabilities CVE-2022-42889, CVE-2022-25168 and CVE-2021-33036
hadoop jar libraries upgraded to version 3.3.6
commons.cli vesion 1.5.1 and commons-codec version 1.16.1

## v3.9.5:
* [#145](https://github.com/IBMStreams/streamsx.hbase/issues/149) 3rd party library slf4j-api upgraded to version 1.7.36
Expand Down
7 changes: 6 additions & 1 deletion com.ibm.streamsx.hbase/info.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -241,10 +241,15 @@ The jar library zookeeper-3.4.13.jar has been replaced with **zookeeper-3.4.6.ja

* 3rd party library slf4j-api upgraded to version 1.7.36

++ What is new in version 3.9.6

* The Vulnerability issues for 3rd party libraries have been fixed
* hadoop libraries upgraded to version 3.3.6
* commons-cli upgraded to 1.5.0
* commons-codecs upgraded to 1.16.1

</info:description>
<info:version>3.9.5</info:version>
<info:version>3.9.6</info:version>
<info:requiredProductVersion>4.0.0.0</info:requiredProductVersion>
</info:identity>
<info:dependencies/>
Expand Down
29 changes: 20 additions & 9 deletions com.ibm.streamsx.hbase/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
<groupId>com.ibm.streamsx.hbase</groupId>
<artifactId>streamsx.hbase</artifactId>
<packaging>jar</packaging>
<version>3.9.5</version>
<version>3.9.6</version>
<name>com.ibm.streamsx.hbase</name>
<repositories>
<repository>
Expand All @@ -25,7 +25,7 @@
<dependency>
<groupId>commons-cli</groupId>
<artifactId>commons-cli</artifactId>
<version>1.4</version>
<version>1.5.0</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -37,7 +37,7 @@
<dependency>
<groupId>commons-codec</groupId>
<artifactId>commons-codec</artifactId>
<version>1.15</version>
<version>1.16.0</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -61,7 +61,7 @@
<dependency>
<groupId>org.apache.commons</groupId>
<artifactId>commons-configuration2</artifactId>
<version>2.7</version>
<version>2.9.0</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -73,7 +73,7 @@
<dependency>
<groupId>commons-io</groupId>
<artifactId>commons-io</artifactId>
<version>2.7</version>
<version>2.13.0</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -96,7 +96,7 @@
<dependency>
<groupId>org.apache.commons</groupId>
<artifactId>commons-lang3</artifactId>
<version>3.11</version>
<version>3.13.0</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand Down Expand Up @@ -237,7 +237,7 @@
<dependency>
<groupId>org.apache.hadoop</groupId>
<artifactId>hadoop-annotations</artifactId>
<version>3.3.0</version>
<version>3.3.6</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -249,7 +249,7 @@
<dependency>
<groupId>org.apache.hadoop</groupId>
<artifactId>hadoop-auth</artifactId>
<version>3.3.0</version>
<version>3.3.6</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -261,7 +261,7 @@
<dependency>
<groupId>org.apache.hadoop</groupId>
<artifactId>hadoop-common</artifactId>
<version>3.3.0</version>
<version>3.3.6</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
Expand All @@ -270,6 +270,17 @@
</exclusions>
</dependency>

<dependency>
<groupId>org.apache.hadoop.thirdparty</groupId>
<artifactId>hadoop-shaded-guava</artifactId>
<version>1.1.1</version>
<exclusions>
<exclusion>
<groupId>*</groupId>
<artifactId>*</artifactId>
</exclusion>
</exclusions>
</dependency>


<dependency>
Expand Down

0 comments on commit 2eb402b

Please sign in to comment.