jar type vulnerability fix for entitlements-service (!404) · Merge requests · OSDU Software / OSDU Data Platform / Security and Compliance / Entitlements

Pintu Gupta requested to merge vulnerability-fix-ibm into master Dec 19, 2022

Following CVE has been fix into following MR :

cve	link
PRISMA-2022-0239	https://github.com/square/okhttp/issues/6738
CVE-2022-42003	https://nvd.nist.gov/vuln/detail/CVE-2022-42003
CVE-2022-42004	https://nvd.nist.gov/vuln/detail/CVE-2022-42004
CVE-2022-25857	https://nvd.nist.gov/vuln/detail/CVE-2022-25857
CVE-2022-42252	https://nvd.nist.gov/vuln/detail/CVE-2022-42252

jar type vulnerability fix for entitlements-service