upgrade spring-jdbc to 5.3.18 due to Spring4Shell security vulnerability #1340

lling · llinggit · commit 16c3c2aa809e · 2022-04-01T10:48:38.000-07:00
diff --git a/marklogic-client-api/build.gradle b/marklogic-client-api/build.gradle
@@ -33,7 +33,7 @@ dependencies {
     compileOnly group: 'net.sourceforge.htmlcleaner', name: 'htmlcleaner', version:'2.24'
     compileOnly group: 'com.opencsv', name: 'opencsv', version: '4.6'
     compileOnly group: 'org.geonames', name: 'geonames', version:'1.0'
-    compileOnly group: 'org.springframework', name: 'spring-jdbc', version: '5.2.7.RELEASE'
+    compileOnly group: 'org.springframework', name: 'spring-jdbc', version: '5.3.18'
 }
 
 jar {

Original file line number	Diff line number	Diff line change
`@@ -33,7 +33,7 @@ dependencies {`
`33`	`33`	`compileOnly group: 'net.sourceforge.htmlcleaner', name: 'htmlcleaner', version:'2.24'`
`34`	`34`	`compileOnly group: 'com.opencsv', name: 'opencsv', version: '4.6'`
`35`	`35`	`compileOnly group: 'org.geonames', name: 'geonames', version:'1.0'`
`36`		`- compileOnly group: 'org.springframework', name: 'spring-jdbc', version: '5.2.7.RELEASE'`
	`36`	`+ compileOnly group: 'org.springframework', name: 'spring-jdbc', version: '5.3.18'`
`37`	`37`	`}`
`38`	`38`
`39`	`39`	`jar {`