Skip to content

Commit

Permalink
[ISSUE-2395]SynchronossPartHttpMessageReader should only create temp …
Browse files Browse the repository at this point in the history 
…directory when needed/CVE-2022-2296
  • Loading branch information
@duhanmin
duhanmin committed Jul 5, 2022
1 parent b462730 commit f32028d
Show file tree
Hide file tree
Showing 5 changed files with 44 additions and 0 deletions.
9 changes: 9 additions & 0 deletions linkis-commons/linkis-module/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,8 +59,17 @@
<artifactId>spring-core</artifactId>
<groupId>org.springframework</groupId>
</exclusion>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
<version>${spring.web.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-starter-netflix-eureka-client</artifactId>
Expand Down
10 changes: 10 additions & 0 deletions linkis-public-enhancements/linkis-publicservice/linkis-jobhistory/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,8 +39,18 @@
<artifactId>spring-boot-starter-logging</artifactId>
<groupId>org.springframework.boot</groupId>
</exclusion>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
<version>${spring.web.version}</version>
</dependency>

<dependency>
<groupId>org.apache.linkis</groupId>
<artifactId>linkis-mybatis</artifactId>
Expand Down
9 changes: 9 additions & 0 deletions linkis-spring-cloud-services/linkis-service-discovery/linkis-eureka/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,8 +61,17 @@
<groupId>io.github.x-stream</groupId>
<artifactId>mxparser</artifactId>
</exclusion>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
<version>${spring.web.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-log4j2</artifactId>
Expand Down
4 changes: 4 additions & 0 deletions linkis-spring-cloud-services/linkis-service-gateway/linkis-spring-cloud-gateway/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,6 +77,10 @@
<artifactId>reactor-core</artifactId>
<groupId>io.projectreactor</groupId>
</exclusion>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down
12 changes: 12 additions & 0 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,6 +103,7 @@
<hadoop.version>2.7.2</hadoop.version>
<zookeeper.version>3.5.9</zookeeper.version>
<spring.boot.version>2.3.12.RELEASE</spring.boot.version>
<spring.web.version>5.3.12</spring.web.version>
<guava.version>30.0-jre</guava.version>
<gson.version>2.8.9</gson.version>
<scala.version>2.11.12</scala.version>
Expand Down Expand Up @@ -811,6 +812,17 @@
<version>${spring.boot.version}</version>
<type>pom</type>
<scope>import</scope>
<exclusions>
<exclusion>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.springframework</groupId>
<artifactId>spring-web</artifactId>
<version>${spring.web.version}</version>
</dependency>
<dependency>
<groupId>org.springframework.cloud</groupId>
Expand Down

0 comments on commit f32028d

Please sign in to comment.