Suppress CVE-2017-15288 and upgrade bcprov-ext-jdk15o (#10933)

2021-03-03 05:48:27 +05:30 · 2021-03-03 05:48:27 +05:30 · 7d9a61cf7f
parent b7b0ee8362
commit 7d9a61cf7f
3 changed files with 14 additions and 1 deletions
--- a/extensions-core/kubernetes-extensions/pom.xml
+++ b/extensions-core/kubernetes-extensions/pom.xml
@ -93,6 +93,12 @@
      <version>1.68</version>
      <scope>runtime</scope>
    </dependency>
+    <dependency>
+      <groupId>org.bouncycastle</groupId>
+      <artifactId>bcprov-ext-jdk15on</artifactId>
+      <version>1.68</version>
+      <scope>runtime</scope>
+    </dependency>

    <!-- others -->
    <dependency>
--- a/licenses.yaml
+++ b/licenses.yaml
@ -1041,7 +1041,7 @@ name: org.bouncycastle bcprov-ext-jdk15on
 license_category: binary
 module: extensions/druid-kubernetes-extensions
 license_name: MIT License
-version: 1.66
+version: 1.68
 libraries:
  - org.bouncycastle: bcprov-ext-jdk15on

--- a/owasp-dependency-check-suppressions.xml
+++ b/owasp-dependency-check-suppressions.xml
@ -300,4 +300,11 @@
     <cve>CVE-2018-11765</cve>
     <cve>CVE-2020-9492</cve>
  </suppress>
+  <suppress>
+    <!-- We don't use scala compilation daemon. -->
+    <notes><![CDATA[
+     file name: kafka-clients-2.7.0.jar
+     ]]></notes>
+    <cve>CVE-2017-15288</cve>
+  </suppress>
 </suppressions>