Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities #1361

julianladisch · 2022-08-29T05:30:19Z

Upgrade com.squareup.okhttp3:okhttp from 4.8.1 to 4.10.0
fixing an information exposure vulnerability:
https://security.snyk.io/vuln/SNYK-JAVA-COMSQUAREUPOKHTTP3-2958044

This indirectly upgrades org.jetbrains.kotlin:kotlin-stdlib from
1.3.72 to 1.6.20 fixing an improper locking vulnerability:
https://nvd.nist.gov/vuln/detail/CVE-2022-24329

Upgrade junit from 4.13 to 4.13.2 fixing an Information Exposure
vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2020-15250

Upgrade com.squareup.okhttp3:okhttp from 4.8.1 to 4.10.0 fixing an information exposure vulnerability: https://security.snyk.io/vuln/SNYK-JAVA-COMSQUAREUPOKHTTP3-2958044 This indirectly upgrades org.jetbrains.kotlin:kotlin-stdlib from 1.3.72 to 1.6.20 fixing an improper locking vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2022-24329

Upgrade junit from 4.13 to 4.13.2 fixing an Information Exposure vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2020-15250

julianladisch added 2 commits August 29, 2022 07:28

Upgrade to junit 4.13.2 fixing Information Exposure (CVE-2020-15250)

45b7ab9

Upgrade junit from 4.13 to 4.13.2 fixing an Information Exposure vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2020-15250

balamurugana mentioned this pull request Aug 29, 2022

Upgrade to junit 4.13.2 fixing Information Exposure (CVE-2020-15250) #1362

Closed

Merge branch 'junit-4.13.2' into okhttp-4.10.0

ea3bbc2

julianladisch changed the title ~~Upgrade okttp to 4.10.0 fixing Information Exposure vuln~~ Upgrade okttp, kotlin-stdlib, junit fixing vulnerabilities Aug 29, 2022

balamurugana changed the title ~~Upgrade okttp, kotlin-stdlib, junit fixing vulnerabilities~~ Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities Aug 29, 2022

balamurugana approved these changes Aug 29, 2022

View reviewed changes

harshavardhana approved these changes Aug 29, 2022

View reviewed changes

harshavardhana merged commit 3fb15f5 into minio:master Aug 29, 2022

This pull request was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities #1361

Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities #1361

julianladisch commented Aug 29, 2022 •

edited

Loading

Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities #1361

Upgrade okhttp, kotlin-stdlib, junit fixing vulnerabilities #1361

Conversation

julianladisch commented Aug 29, 2022 • edited Loading

julianladisch commented Aug 29, 2022 •

edited

Loading