Skip to content
This repository has been archived by the owner on May 30, 2023. It is now read-only.

[Snyk] Security upgrade xerces:xercesImpl from 2.12.0 to 2.12.1 #40

Open
wants to merge 25 commits into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade xerces:xercesImpl from 2.12.0 to 2.12.1 #40

wants to merge 25 commits into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Jan 4, 2021

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • pom.xml

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Upgrade Breaking Change Exploit Maturity
medium severity 479/1000
Why? Has a fix available, CVSS 5.3		 Improper Input Validation
SNYK-JAVA-XERCES-608891		 xerces:xercesImpl:
2.12.0 -> 2.12.1
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Gerard van Wengerden and others added 25 commits August 7, 2015 15:51
Deleted FitnesseRoot
337b90d
UI tests were executed during Unit Testing which caused exceptions in…
ff8593b 
… Jenkins because of no UI available there
@gerardvw
Merge pull request #13 from gerardvw/master
3c6d3e7 
Pull request for fixing Unit Test on UI and deleting FitnesseRoot from OASIS-Maven
updated version of maven-assembly-plugin to fix codehaus.plexus errors
61797e3
@gerardvw
Merge pull request #14 from gerardvw/master
28fa23f 
updated version of maven-assembly-plugin to fix codehaus.plexus errors
@snyk-bot
fix: pom.xml to reduce vulnerabilities
1924a83 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMJCRAFT-30302
- https://snyk.io/vuln/SNYK-JAVA-COMMONSCOLLECTIONS-30078
- https://snyk.io/vuln/SNYK-JAVA-IONETTY-30100
- https://snyk.io/vuln/SNYK-JAVA-IONETTY-30430
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-31517
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPDFBOX-30025
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPDFBOX-30693
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPDFBOX-30694
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30026
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30027
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30698
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30699
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30701
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-31387
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-31438
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-32049
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-31048
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32340
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32361
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32362
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32364
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32365
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32366
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32367
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32368
- https://snyk.io/vuln/SNYK-JAVA-XALAN-31385
@snyk-bot
fix: pom.xml to reduce vulnerabilities
709bb62 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-XERCES-30183
- https://snyk.io/vuln/SNYK-JAVA-XERCES-31497
@snyk-bot
fix: pom.xml to reduce vulnerabilities
5d3af7a 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236
@snyk-bot
fix: pom.xml to reduce vulnerabilities
b777a28 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEPROTOBUF-173761
@snyk-bot
fix: pom.xml to reduce vulnerabilities
9550a08 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-173771
fix: pom.xml to reduce vulnerabilities
0d4edde 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-32151
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-32383
@bbaassssiiee
Merge pull request #25 from dockpack/snyk-fix-zf9as8
29ce5b3 
[Snyk] Fix for 1 vulnerable dependencies
@bbaassssiiee
Merge pull request #26 from dockpack/snyk-fix-aln0fz
0ef8937 
[Snyk] Fix for 1 vulnerable dependencies
@bbaassssiiee
Merge pull request #28 from dockpack/snyk-fix-133950ebd086044e8c5fb21…
ec96228 
…dd3b23d02

[Snyk] Fix for 2 vulnerable dependencies
@bbaassssiiee
Merge branch 'master' into snyk-fix-grrc9e
baaebf8
@bbaassssiiee
Merge pull request #15 from dockpack/snyk-fix-grrc9e
8edee74 
[Snyk] Fix for 26 vulnerable dependencies
@bbaassssiiee
Merge pull request #16 from dockpack/snyk-fix-7im8ct
dd9559f 
[Snyk] Fix for 2 vulnerable dependencies
@bbaassssiiee
Merge branch 'master' into snyk-fix-lgd7mn
aaeb69e
@bbaassssiiee
Merge pull request #27 from dockpack/snyk-fix-lgd7mn
6cb6bf3 
[Snyk] Fix for 1 vulnerable dependencies
fix: pom.xml to reduce vulnerabilities
90e1dc6 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPDFBOX-32417
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPDFBOX-72426
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30026
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30027
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30698
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30699
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-30701
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-31387
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-31438
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-32049
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-173771
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-31048
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32340
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32361
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32364
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32365
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32366
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32367
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32368
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-32412
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-174479
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-32383
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-32384
@bbaassssiiee
Merge pull request #29 from dockpack/snyk-fix-10a0ccdb1ce8aaaa02cceb9…
a2a7a8d 
…6f18b2825

[Snyk] Fix for 23 vulnerable dependencies
fix: pom.xml to reduce vulnerabilities
cc562d6 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGECLIPSEJETTY-174471
@bbaassssiiee
Merge pull request #30 from dockpack/snyk-fix-645bfba5bfa8abed7ff382b…
aa41b4d 
…a0e628238

[Snyk] Fix for 1 vulnerable dependencies
@snyk-bot @bbaassssiiee
fix: pom.xml to reduce vulnerabilities
989f20f 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEPOI-548686
@snyk-bot
fix: pom.xml to reduce vulnerabilities
eb34582 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-XERCES-608891
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@snyk-bot @gerardvw @bbaassssiiee