Vulnerability issue commons-codec version 1.12 #132

anouri · anouri · commit b8eaadfdc889 · 2020-07-20T12:37:05.000+02:00
diff --git a/com.ibm.streamsx.hbase/CHANGELOG.md b/com.ibm.streamsx.hbase/CHANGELOG.md
@@ -1,5 +1,8 @@
 # Changes
 =======
+## v3.8.5:
+* #132: The Vulnerability issue for 3rh party library commons-codec version 1.12 has been fixed. The maven pom.xml file has been upgraded to use commons-codec version 1.14 
+
 ## v3.8.4:
 * #127: The Vulnerability issue for 3rh party library commons-configuration2 version 2.5 has been fixed.
 The maven pom.xml file has been upgraded to use commons-configuration2 version 2.7.
diff --git a/com.ibm.streamsx.hbase/info.xml b/com.ibm.streamsx.hbase/info.xml
@@ -215,9 +215,12 @@ The jar library zookeeper-3.4.13.jar has been replaced with **zookeeper-3.4.6.ja
 
 * pom.xml updated to use commons-configuration2 JAR library version 2.7
 
+++ What is new in version 3.8.5
+
+* pom.xml updated to use commons-codec JAR library version 1.14
 
 </info:description>
-    <info:version>3.8.4</info:version>
+    <info:version>3.8.5</info:version>
     <info:requiredProductVersion>4.0.0.0</info:requiredProductVersion>
   </info:identity>
   <info:dependencies/>
diff --git a/com.ibm.streamsx.hbase/pom.xml b/com.ibm.streamsx.hbase/pom.xml
@@ -37,7 +37,7 @@
 		<dependency>
 			<groupId>commons-codec</groupId>
 			<artifactId>commons-codec</artifactId>
-			<version>1.12</version>
+			<version>1.14</version>
 			<exclusions>
 				<exclusion>
 					<groupId>*</groupId>
