Merge pull request #1388 from hmcts/CCD-4737

CCD-4737 : Fix CVE-2023-28709 (Bumped version of Tomcat)
hmcts · Oct 23, 2023 · 4dbaa02 · 4dbaa02
2 parents 752e1aa + b521f57
commit 4dbaa02
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 3 deletions.
diff --git a/build.gradle b/build.gradle
@@ -56,7 +56,7 @@ ext {
     appInsightsVersion = '2.4.1'
     restAssuredVersion = '4.3.0!!'
     groovyVersion = '3.0.17!!'
-    tomcatVersion = '9.0.73!!'
+    tomcatVersion = '9.0.75!!'
     feignJackson = '11.6'
     limits = [
             'instruction': 99,

diff --git a/dependency-check-suppressions.xml b/dependency-check-suppressions.xml
@@ -4,7 +4,6 @@
         CVE-2022-45688 refer https://tools.hmcts.net/jira/browse/CCD-4373
         CVE-2022-1471 refer https://tools.hmcts.net/jira/browse/CCD-4454
         CVE-2023-20873 refer [Ticket]
-        CVE-2023-28709 refer [Ticket]
         CVE-2023-20883 refer [Ticket]
         CVE-2023-35116 refer [Ticket]
         CVE-2023-2976 refer [Ticket]
@@ -18,7 +17,6 @@
         CVE-2023-5072 refer [Ticket]</notes>
     <cve>CVE-2022-45688</cve>
     <cve>CVE-2022-1471</cve>
-    <cve>CVE-2023-28709</cve>
     <cve>CVE-2023-20883</cve>
     <cve>CVE-2023-35116</cve>
     <cve>CVE-2023-2976</cve>