HADOOP-19123. Update to commons-configuration2 2.10.1 due to CVE (#6661). Contributed by PJ Fanning

Reviewed-by: Shilun Fan <slfan1989@apache.org> Signed-off-by: Ayush Saxena <ayushsaxena@apache.org>
2024-04-02 21:50:00 +02:00 · 2024-04-02 21:50:00 +02:00 · 1357bb162d
commit 1357bb162d
parent ba7faf90c8
2 changed files with 2 additions and 2 deletions
--- a/2
+++ b/2
@ -300,7 +300,7 @@ net.minidev:accessors-smart:1.2
 org.apache.avro:avro:1.9.2
 org.apache.commons:commons-collections4:4.2
 org.apache.commons:commons-compress:1.24.0
-org.apache.commons:commons-configuration2:2.8.0
+org.apache.commons:commons-configuration2:2.10.1
 org.apache.commons:commons-csv:1.9.0
 org.apache.commons:commons-digester:1.8.1
 org.apache.commons:commons-lang3:3.12.0
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@ -1244,7 +1244,7 @@
      <dependency>
        <groupId>org.apache.commons</groupId>
        <artifactId>commons-configuration2</artifactId>
-        <version>2.8.0</version>
+        <version>2.10.1</version>
        <exclusions>
          <exclusion>
            <groupId>org.apache.commons</groupId>