CIRCSTORE-520: Upgrade Vertx from 4.5.5 to 4.5.9 fixing Snappy vulns

https://folio-org.atlassian.net/browse/CIRCSTORE-520 Upgrade Vert.x from 4.5.5 to 4.5.9. This indirectly upgrades snappy-java from 1.1.10.0 to 1.1.10.5 fixing these vulnerablities: * https://nvd.nist.gov/vuln/detail/CVE-2023-43642 Allocation of Resources Without Limits or Throttling * https://nvd.nist.gov/vuln/detail/CVE-2023-34455 Denial of Service (DoS) * https://nvd.nist.gov/vuln/detail/CVE-2023-34453 Integer Overflow or Wraparound * https://nvd.nist.gov/vuln/detail/CVE-2023-34454 Integer Overflow or Wraparound
indexdata · Aug 5, 2024 · ed629f9 · ed629f9
1 parent 117f2c3
commit ed629f9
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pom.xml b/pom.xml
@@ -28,7 +28,7 @@
     <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
     <project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
     <ramlfiles_path>${basedir}/ramls</ramlfiles_path>
-    <vertx-version>4.5.5</vertx-version>
+    <vertx-version>4.5.9</vertx-version>
     <raml-module-builder-version>35.2.0</raml-module-builder-version>
     <spring.version>6.1.5</spring.version>
     <argLine />