HADOOP-17571 : Bump up woodstox-core to 5.3.0 due to security concerns (#2757)

Contributed by Viraj Jasani. Signed-off-by: Mingliang Liu <liuml07@apache.org> Signed-off-by: Akira Ajisaka <aajisaka@apache.org>
2021-03-12 01:21:24 +05:30 · 2021-03-12 01:21:24 +05:30 · 36313b38cb
parent 0c1ba49c37
commit 36313b38cb
1 changed files with 2 additions and 1 deletions
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@ -210,6 +210,7 @@
    <powermock.version>1.5.6</powermock.version>
    <solr.version>7.7.0</solr.version>
    <openssl-wildfly.version>1.0.7.Final</openssl-wildfly.version>
+    <woodstox.version>5.3.0</woodstox.version>
  </properties>

  <dependencyManagement>
@ -1109,7 +1110,7 @@
      <dependency>
        <groupId>com.fasterxml.woodstox</groupId>
        <artifactId>woodstox-core</artifactId>
-        <version>5.0.3</version>
+        <version>${woodstox.version}</version>
      </dependency>
      <dependency>
        <groupId>org.codehaus.jackson</groupId>