Skip to content
Snippets Groups Projects

[MS-43510] remediate tomcat vulnerability

Merged [MS-43510] remediate tomcat vulnerability
az/vl-fix-tomact-vul into master
Merged VidyaDharani Lokam requested to merge az/vl-fix-tomact-vul into master
  • update spring-boot version to 3.3.1 to remediate tomcat vulnerability.
  • update core-lib-azure-spring6 to 0.27.0-rc3 .

mvn dependency:tree before changes:

[INFO] |  |  +- org.springframework.boot:spring-boot-starter-json:jar:3.2.5:compile
[INFO] |  |  \- org.springframework.boot:spring-boot-starter-tomcat:jar:3.2.5:compile
[INFO] |  |     \- org.apache.tomcat.embed:tomcat-embed-websocket:jar:10.1.20:compile
[INFO] |  +- org.springframework.boot:spring-boot-starter-validation:jar:3.2.5:compile
[INFO] |  |  +- org.apache.tomcat.embed:tomcat-embed-el:jar:10.1.20:compile

mvn dependency:tree after changes:

[INFO] |  |  +- org.springframework.boot:spring-boot-starter-json:jar:3.3.1:compile
[INFO] |  |  \- org.springframework.boot:spring-boot-starter-tomcat:jar:3.3.1:compile
[INFO] |  |     \- org.apache.tomcat.embed:tomcat-embed-websocket:jar:10.1.25:compile
[INFO] |  +- org.springframework.boot:spring-boot-starter-validation:jar:3.3.1:compile
[INFO] |  |  +- org.apache.tomcat.embed:tomcat-embed-el:jar:10.1.25:compile
Edited by VidyaDharani Lokam

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
Please register or sign in to reply