Provides transitive vulnerable dependency maven:org.wildfly.security:wildfly-elytron-credential:1.12.1.Final

CVE-2022-3143 7.4 Observable Discrepancy vulnerability pending CVSS allocation
2023-08-25 11:10:03 -05:00 · 2023-08-25 11:10:03 -05:00 · ae71b40acf
parent ca95d3f222
commit ae71b40acf
1 changed files with 6 additions and 1 deletions
--- a/pom.xml
+++ b/pom.xml
@ -147,7 +147,7 @@
    <taglibs-standard-spec.version>1.2.5</taglibs-standard-spec.version>
    <testcontainers.version>1.18.3</testcontainers.version>
    <wildfly.common.version>1.6.0.Final</wildfly.common.version>
-    <wildfly.elytron.version>2.2.1.Final</wildfly.elytron.version>
+    <wildfly.elytron.version>1.20.4.Final</wildfly.elytron.version>
    <xmemcached.version>2.4.7</xmemcached.version>

    <!-- some maven plugins versions -->
@ -1678,6 +1678,11 @@
        <artifactId>jboss-threads</artifactId>
        <version>${jboss-threads.version}</version>
      </dependency>
+      <dependency>
+        <groupId>org.wildfly.security</groupId>
+        <artifactId>wildfly-elytron</artifactId>
+        <version>${wildfly.elytron.version}</version>
+      </dependency>
      <dependency>
        <groupId>org.junit</groupId>
        <artifactId>junit-bom</artifactId>