honeymoose
/
hapi-fhir
mirror of https://github.com/hapifhir/hapi-fhir.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

CVE Fixes (#4200) 

* CVEs

* bump snakeyaml again

* Add updates to changes.yaml
This commit is contained in:
Tadgh 2022-10-26 10:17:11 -07:00 committed by GitHub
parent 78ce2a6344
commit 296ddb8a37
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 6 additions and 41 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
hapi-fhir-batch/pom.xml
View File

@ -19,14 +19,6 @@
</description> </description>
<dependencies> <dependencies>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-core</artifactId>
</dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-infrastructure</artifactId>
</dependency>
<dependency> <dependency>
<groupId>javax.annotation</groupId> <groupId>javax.annotation</groupId>
<artifactId>javax.annotation-api</artifactId> <artifactId>javax.annotation-api</artifactId>

2
hapi-fhir-docs/pom.xml
View File

@ -111,7 +111,7 @@
<dependency> <dependency>
<groupId>org.yaml</groupId> <groupId>org.yaml</groupId>
<artifactId>snakeyaml</artifactId> <artifactId>snakeyaml</artifactId>
<version>1.31</version> <version>1.33</version>
</dependency> </dependency>
<dependency> <dependency>

3
hapi-fhir-docs/src/main/resources/ca/uhn/hapi/fhir/changelog/6_2_0/changes.yaml
View File

@ -12,6 +12,9 @@
<li>Caffeine (JPA): 2.9.1 -> 3.1.1</li> <li>Caffeine (JPA): 2.9.1 -> 3.1.1</li>
<li>Commons-Text (JPA and Testpage Overlay): 1.9.0 -> 1.10.0 (Addresses <a href=\"https://nvd.nist.gov/vuln/detail/CVE-2022-42889\">CVE-2022-42889</a>)</li> <li>Commons-Text (JPA and Testpage Overlay): 1.9.0 -> 1.10.0 (Addresses <a href=\"https://nvd.nist.gov/vuln/detail/CVE-2022-42889\">CVE-2022-42889</a>)</li>
<li>Spring Boot (Boot): 2.6.7 -> 2.7.4</li> <li>Spring Boot (Boot): 2.6.7 -> 2.7.4</li>
<li>Jackson Databind: 2.13.2.2 -> 2.13.4.1</li>
<li>Snakeyaml : 1.31 -> 1.33</li>
<li>Graphql-Java : 17.3 -> 17.4</li>
</ul> </ul>
" "

4
hapi-fhir-server/pom.xml
View File

@ -73,10 +73,6 @@
<groupId>org.springframework</groupId> <groupId>org.springframework</groupId>
<artifactId>spring-messaging</artifactId> <artifactId>spring-messaging</artifactId>
</dependency> </dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-core</artifactId>
</dependency>
<dependency> <dependency>
<groupId>ch.qos.logback</groupId> <groupId>ch.qos.logback</groupId>
<artifactId>logback-classic</artifactId> <artifactId>logback-classic</artifactId>

10
hapi-fhir-test-utilities/pom.xml
View File

@ -75,16 +75,6 @@
<artifactId>spring-test</artifactId> <artifactId>spring-test</artifactId>
<optional>true</optional> <optional>true</optional>
</dependency> </dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-core</artifactId>
<optional>true</optional>
</dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-test</artifactId>
<optional>true</optional>
</dependency>
<!-- HTMLUnit --> <!-- HTMLUnit -->
<dependency> <dependency>

20
pom.xml
View File

@ -827,7 +827,7 @@
<httpcore_version>4.4.13</httpcore_version> <httpcore_version>4.4.13</httpcore_version>
<httpclient_version>4.5.13</httpclient_version> <httpclient_version>4.5.13</httpclient_version>
<jackson_version>2.13.2</jackson_version> <jackson_version>2.13.2</jackson_version>
<jackson_databind_version>2.13.2.2</jackson_databind_version> <jackson_databind_version>2.13.4.1</jackson_databind_version>
<maven_assembly_plugin_version>3.3.0</maven_assembly_plugin_version> <maven_assembly_plugin_version>3.3.0</maven_assembly_plugin_version>
<maven_license_plugin_version>1.8</maven_license_plugin_version> <maven_license_plugin_version>1.8</maven_license_plugin_version>
<okhttp_version>4.10.0</okhttp_version> <okhttp_version>4.10.0</okhttp_version>
@ -947,7 +947,7 @@
<dependency> <dependency>
<groupId>com.graphql-java</groupId> <groupId>com.graphql-java</groupId>
<artifactId>graphql-java</artifactId> <artifactId>graphql-java</artifactId>
<version>17.3</version> <version>17.4</version>
</dependency> </dependency>
<!-- mail start --> <!-- mail start -->
<dependency> <dependency>
@ -1847,16 +1847,6 @@
<artifactId>spring-retry</artifactId> <artifactId>spring-retry</artifactId>
<version>${spring_retry_version}</version> <version>${spring_retry_version}</version>
</dependency> </dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-core</artifactId>
<version>${spring_batch_version}</version>
</dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-infrastructure</artifactId>
<version>${spring_batch_version}</version>
</dependency>
<dependency> <dependency>
<groupId>org.thymeleaf</groupId> <groupId>org.thymeleaf</groupId>
<artifactId>thymeleaf</artifactId> <artifactId>thymeleaf</artifactId>
@ -1967,12 +1957,6 @@
<artifactId>flyway-core</artifactId> <artifactId>flyway-core</artifactId>
<version>${flyway_version}</version> <version>${flyway_version}</version>
</dependency> </dependency>
<dependency>
<groupId>org.springframework.batch</groupId>
<artifactId>spring-batch-test</artifactId>
<version>${spring_batch_version}</version>
<scope>test</scope>
</dependency>
</dependencies> </dependencies>
</dependencyManagement> </dependencyManagement>