Fix CVE-2023-20863 (#677)

Co-authored-by: amoghnaik-hmcts <[email protected]>
hmcts · Feb 15, 2024 · 311c91a · 311c91a
1 parent e40e9ea
commit 311c91a
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 8 deletions.
diff --git a/build.gradle b/build.gradle
@@ -42,7 +42,7 @@ pmd {
   sourceSets = []
 }
 
-ext['spring-framework.version'] = '5.3.26'
+ext['spring-framework.version'] = '5.3.27'
 ext['spring-security.version'] = '5.7.8'
 ext['log4j2.version'] = '2.17.1'
 ext['jackson.version'] = '2.15.3'

diff --git a/config/owasp/suppressions.xml b/config/owasp/suppressions.xml
@@ -11,12 +11,11 @@
       CVE-2023-45648 refer [Ticket]
       CVE-2023-44487 refer [Ticket]
       CVE-2023-5072  refer [Ticket]
-      CVE-2023-20863 refer [Ticket]
-        CVE-2023-33202 refer [Ticket]
-        CVE-2023-34055 refer [Ticket]
-        CVE-2023-46589 refer [Ticket]
-        CVE-2023-6378 refer [Ticket]
-        CVE-2023-35116 refer [Ticket]</notes>
+      CVE-2023-33202 refer [Ticket]
+      CVE-2023-34055 refer [Ticket]
+      CVE-2023-46589 refer [Ticket]
+      CVE-2023-6378 refer [Ticket]
+      CVE-2023-35116 refer [Ticket]</notes>
 <cve>CVE-2022-45688</cve>
 <cve>CVE-2023-34036</cve>
 <cve>CVE-2023-34034</cve>
@@ -27,7 +26,6 @@
 <cve>CVE-2023-45648</cve>
 <cve>CVE-2023-44487</cve>
 <cve>CVE-2023-5072</cve>
-<cve>CVE-2023-20863</cve>
 <cve>CVE-2023-33202</cve>
 <cve>CVE-2023-34055</cve>
 <cve>CVE-2023-46589</cve>