Skip to content

Commit

Permalink
Upgrade hibernate validator version to fix CVE-2019-10219 (#14757)
Browse files Browse the repository at this point in the history
  • Loading branch information
@findingrish
findingrish committed Aug 14, 2023
1 parent e2d2afc commit 0dc305f
Show file tree
Hide file tree
Showing 27 changed files with 58 additions and 54 deletions.
4 changes: 2 additions & 2 deletions cloud/aws-common/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -76,8 +76,8 @@
<artifactId>aws-java-sdk-core</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>

<!-- Runtime -->
Expand Down
4 changes: 2 additions & 2 deletions extensions-contrib/aliyun-oss-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -91,8 +91,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-contrib/cassandra-storage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -150,8 +150,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-contrib/cloudfiles-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -88,8 +88,8 @@
<artifactId>guava</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<!-- jclouds dependencies -->
Expand Down
4 changes: 2 additions & 2 deletions extensions-contrib/graphite-emitter/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -87,8 +87,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>

Expand Down
4 changes: 2 additions & 2 deletions extensions-contrib/kubernetes-overlord-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -107,8 +107,8 @@
<version>6.7.2</version>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
5 changes: 2 additions & 3 deletions extensions-contrib/redis-cache/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -92,9 +92,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<version>1.1.0.Final</version>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>

Expand Down
4 changes: 2 additions & 2 deletions extensions-core/azure-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -115,8 +115,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/druid-catalog/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -102,8 +102,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/google-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -105,8 +105,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/hdfs-storage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -103,8 +103,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>

Expand Down
4 changes: 2 additions & 2 deletions extensions-core/kafka-extraction-namespace/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -97,8 +97,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/kafka-indexing-service/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -124,8 +124,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>

Expand Down
4 changes: 2 additions & 2 deletions extensions-core/lookups-cached-global/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -95,8 +95,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/multi-stage-query/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -102,8 +102,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/orc-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,8 +189,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions extensions-core/s3-extensions/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -108,8 +108,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions indexing-hadoop/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,8 +82,8 @@
<artifactId>guice</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>org.eclipse.jetty</groupId>
Expand Down
4 changes: 2 additions & 2 deletions indexing-service/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -133,8 +133,8 @@
<artifactId>curator-recipes</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>javax.servlet</groupId>
Expand Down
4 changes: 2 additions & 2 deletions integration-tests/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -299,8 +299,8 @@
<artifactId>guava</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
Expand Down
4 changes: 2 additions & 2 deletions licenses.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1569,9 +1569,9 @@ name: Bean Validation API
license_category: binary
module: java-core
license_name: Apache License version 2.0
version: 1.1.0.Final
version: 2.0.2
libraries:
- javax.validation: validation-api
- jakarta.validation: jakarta.validation-api

---

Expand Down
9 changes: 7 additions & 2 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -115,7 +115,7 @@
<aws.sdk.version>1.12.497</aws.sdk.version>
<caffeine.version>2.8.0</caffeine.version>
<jacoco.version>0.8.7</jacoco.version>
<hibernate-validator.version>5.3.6.Final</hibernate-validator.version>
<hibernate-validator.version>6.2.5.Final</hibernate-validator.version>
<httpclient.version>4.5.13</httpclient.version>
<!-- When upgrading ZK, edit docs and integration tests as well (integration-tests/docker-base/setup.sh) -->
<zookeeper.version>3.5.10</zookeeper.version>
Expand Down Expand Up @@ -556,7 +556,12 @@
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<version>1.1.0.Final</version>
<version>2.0.1.Final</version>
</dependency>
<dependency>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<version>2.0.2</version>
</dependency>
<dependency>
<groupId>jakarta.inject</groupId>
Expand Down
4 changes: 2 additions & 2 deletions processing/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -120,8 +120,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>org.ow2.asm</groupId>
Expand Down
4 changes: 2 additions & 2 deletions server/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -280,8 +280,8 @@
<artifactId>jetty-http</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>com.google.errorprone</groupId>
Expand Down
2 changes: 1 addition & 1 deletion server/src/test/java/org/apache/druid/server/log/FilteredRequestLoggerTest.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -287,7 +287,7 @@ public void testNoDelegate()
);

expectedException.expect(ProvisionException.class);
expectedException.expectMessage("log.delegate - may not be null");
expectedException.expectMessage("log.delegate - must not be null");
configurator.configurate(properties, "log", RequestLoggerProvider.class);
}
}
4 changes: 2 additions & 2 deletions services/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -128,8 +128,8 @@
<artifactId>opencsv</artifactId>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
</dependency>
<dependency>
<groupId>com.google.errorprone</groupId>
Expand Down
4 changes: 2 additions & 2 deletions sql/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -171,8 +171,8 @@
<scope>provided</scope>
</dependency>
<dependency>
<groupId>javax.validation</groupId>
<artifactId>validation-api</artifactId>
<groupId>jakarta.validation</groupId>
<artifactId>jakarta.validation-api</artifactId>
<scope>provided</scope>
</dependency>
<dependency>
Expand Down

0 comments on commit 0dc305f

Please sign in to comment.