Vulnerability issue commons-codec #128

IBMStreams · Jul 20, 2020 · 8fec9fd · 8fec9fd
1 parent 290a559
commit 8fec9fd
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 2 deletions.
diff --git a/com.ibm.streamsx.hdfs/CHANGELOG.md b/com.ibm.streamsx.hdfs/CHANGELOG.md
@@ -1,6 +1,10 @@
 Changes
 
 =======
+v5.2.3:
+
+    #128: The Vulnerability issue for 3rh party library commons-codec version 1.12 has been fixed. The maven pom.xml file has been upgraded to use commons-codec version 1.14 
+
 v5.2.2:
 
     #122: The Vulnerability issue for 3rh party library commons-configuration2 version 2.5 has been fixed. The maven pom.xml file has been upgraded to use commons-configuration2 version 2.7.
diff --git a/com.ibm.streamsx.hdfs/info.xml b/com.ibm.streamsx.hdfs/info.xml
@@ -191,8 +191,12 @@ The 'tempFile' parameter specifies the name of the file that the operator writes
 
 * pom.xml updated to use commons-configuration2 version 2.7
 
+++ What is new in version 5.2.3
+
+* pom.xml updated to use commons-codec version 1.14
+
 </description>
-    <version>5.2.2</version>
+    <version>5.2.3</version>
     <requiredProductVersion>4.2.0.0</requiredProductVersion>
   </identity>
   <dependencies/>

diff --git a/com.ibm.streamsx.hdfs/pom.xml b/com.ibm.streamsx.hdfs/pom.xml
@@ -35,7 +35,7 @@
 		<dependency>
 			<groupId>commons-codec</groupId>
 			<artifactId>commons-codec</artifactId>
-			<version>1.12</version>
+			<version>1.14</version>
 			<exclusions>
 				<exclusion>
 					<groupId>*</groupId>