Skip to content

Commit

Permalink
Merge pull request #1570 from hmcts/AM-2923_CVE-2023-41080_Fix
Browse files Browse the repository at this point in the history
AM-2923 CVE-2023-41080 tomcat upgraded to 9.0.80
  • Loading branch information
mikebrownccd authored Sep 11, 2023
2 parents 5a88c59 + 95f5b9e commit 00d084d
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 6 deletions.
4 changes: 2 additions & 2 deletions build.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -394,8 +394,8 @@ dependencies {
//CVE-2021-35515, CVE-2021-35516, CVE-2021-35517, CVE-2021-36090
// To be cleaned up later
implementation group: 'org.apache.commons', name: 'commons-compress', version: '1.21'
implementation group: 'org.apache.tomcat.embed', name: 'tomcat-embed-websocket', version: '9.0.78'
implementation group: 'org.apache.tomcat.embed', name: 'tomcat-embed-core', version: '9.0.78'
implementation group: 'org.apache.tomcat.embed', name: 'tomcat-embed-websocket', version: '9.0.80'
implementation group: 'org.apache.tomcat.embed', name: 'tomcat-embed-core', version: '9.0.80'

implementation group:'com.fasterxml.jackson.datatype', name:'jackson-datatype-jsr310'
implementation group: 'com.fasterxml.jackson.core', name: 'jackson-databind', version: versions.jacksondata
Expand Down
4 changes: 0 additions & 4 deletions config/owasp/suppressions.xml
Original file line number Diff line number Diff line change
Expand Up @@ -13,8 +13,4 @@
<notes>https://tools.hmcts.net/jira/browse/AM-2885 okio</notes>
<cve>CVE-2023-3635</cve>
</suppress>
<suppress>
<notes>https://tools.hmcts.net/jira/browse/AM-2923 tomcat</notes>
<cve>CVE-2023-41080</cve>
</suppress>
</suppressions>

0 comments on commit 00d084d

Please sign in to comment.