-
Task
-
Resolution: Done
-
Highest
-
None
Update the versions of the open source packages in oparent.pom with the recommended versions in the oparent Vulnerability Review Table (https://wiki.onap.org/pages/viewpage.action?pageId=68545778)
Package | Current Version | New Version | Notes |
---|---|---|---|
commons-beanutils : | 1.9.3 | 1.9.4 | All versions of commons-beanutils have security vulnerabilities. SECCOM recommends upgrading to 1.9.4 in order to use a more current version of the package. |
org.apache.tomcat.embed : tomcat-embed-core | 9.0.14 | 9.0.20, 9.0.21, 9.0.22 or 9.0.24 | None of these versions have known vulnerabilities |
org.codehaus.jackson : jackson-mapper-asl | 1.9.13 | No Change | All versions of mackson-mapper-asl have vulnerabilities |
org.webjars : jquery | 3.3.1-1 | 3.4.0 or higher | |
commons-codec | 1.11 | 1.13 | NOTE: commons-code is not in o-parent so this will be ignore. |
org.exist-db.thirdparty.xerces : xercesImpl | 2.12.0 | No Change | This is the newest version |