fix: CVE-2024-22243 & CVE-2024-22259 Upgrade Spring Web to 5.3.33 (#11833)

2024-04-01 16:48:33 +08:00 · 2024-04-01 16:48:33 +08:00 · 19a857b701
commit 19a857b701
parent 25585d65dd
1 changed files with 7 additions and 0 deletions
--- a/pom.xml
+++ b/pom.xml
@ -150,6 +150,7 @@
        <jraft-core.version>1.3.14</jraft-core.version>
        <rpc-grpc-impl.version>${jraft-core.version}</rpc-grpc-impl.version>
        <SnakeYaml.version>2.0</SnakeYaml.version>
+        <spring-web.version>5.3.33</spring-web.version>
    </properties>
    <!-- == -->
    <!-- =========================================================Build plugins================================================ -->
@ -994,6 +995,12 @@
                <artifactId>snakeyaml</artifactId>
                <version>${SnakeYaml.version}</version>
            </dependency>
+
+            <dependency>
+                <groupId>org.springframework</groupId>
+                <artifactId>spring-web</artifactId>
+                <version>${spring-web.version}</version>
+            </dependency>
        </dependencies>
    </dependencyManagement>