[FLUME-3472] fix vulnerability CVE 2020-1938 caused by tomcat-embed-core

apache · Apr 27, 2023 · 8256832 · 8256832
1 parent f9dbb2d
commit 8256832
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/flume-parent/pom.xml b/flume-parent/pom.xml
@@ -895,6 +895,11 @@ limitations under the License.
         </exclusions>
       </dependency>
 
+      <dependency>
+        <groupId>org.apache.tomcat.embed</groupId>
+        <artifactId>tomcat-embed-core</artifactId>
+        <version>9.0.68</version>
+      </dependency>
       <dependency>
         <groupId>org.apache.thrift</groupId>
         <artifactId>libthrift</artifactId>