From 35c301bd555a0b790b2d6621ed2eff0f3bdbf400 Mon Sep 17 00:00:00 2001
From: Gerald Palfinger <gerald.palfinger@iaik.tugraz.at>
Date: Thu, 16 Dec 2021 16:25:40 +0100
Subject: Update commons-io

---
 pdf-as-web/build.gradle | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'pdf-as-web')

diff --git a/pdf-as-web/build.gradle b/pdf-as-web/build.gradle
index 3d43861b..4752ed67 100644
--- a/pdf-as-web/build.gradle
+++ b/pdf-as-web/build.gradle
@@ -52,6 +52,8 @@ dependencies {
 	api project (':pdf-as-web-status')
 	api project (':pdf-as-web-statistic-api')
 	api group: 'commons-fileupload', name: 'commons-fileupload', version: '1.4'
+	// Upgrade dependency of commons-fileupload from 2.2 to 2.8.0 to avoid CVE-2021-29425
+	api group: 'commons-io', name: 'commons-io', version: '2.8.0'
 	api group: 'opensymphony', name: 'sitemesh', version: '2.4.2'
 	api group: 'javax.xml.bind', name: 'jaxb-api', version: '2.3.1'
     api group: 'javax.xml.ws', name: 'jaxws-api', version: '2.3.1'
-- 
cgit v1.2.3