diff --git a/build.gradle b/build.gradle index a0f0f21bfc..7c8723581a 100644 --- a/build.gradle +++ b/build.gradle @@ -233,8 +233,8 @@ subprojects { details.useTarget group: 'io.netty', name: 'netty-all', version: '4.1.124.Final' details.because 'Fixes CVE-2025-24970, CVE-2022-41881, CVE-2021-21290 and CVE-2022-41915.' } else if (!details.requested.name.startsWith('netty-tcnative')) { - details.useVersion '4.1.124.Final' - details.because 'Fixes CVE-2025-55163, CVE-2025-24970, CVE-2022-41881, CVE-2021-21290 and CVE-2022-41915.' + details.useVersion '4.1.125.Final' + details.because 'Fixes CVE-2025-58057, CVE-2025-58056, CVE-2025-55163, CVE-2025-24970, CVE-2022-41881, CVE-2021-21290 and CVE-2022-41915.' } } else if (details.requested.group == 'log4j' && details.requested.name == 'log4j') { details.useTarget group: 'org.apache.logging.log4j', name: 'log4j-1.2-api', version: '2.17.1' diff --git a/settings.gradle b/settings.gradle index 06dc14da85..d3bc41e5ef 100644 --- a/settings.gradle +++ b/settings.gradle @@ -57,7 +57,7 @@ dependencyResolutionManagement { library('guava-core', 'com.google.guava', 'guava').versionRef('guava') version('reflections', '0.10.2') library('reflections-core', 'org.reflections', 'reflections').versionRef('reflections') - library('commons-lang3', 'org.apache.commons', 'commons-lang3').version('3.14.0') + library('commons-lang3', 'org.apache.commons', 'commons-lang3').version('3.18.0') library('commons-io', 'commons-io', 'commons-io').version('2.15.1') library('commons-codec', 'commons-codec', 'commons-codec').version('1.16.0') library('commons-compress', 'org.apache.commons', 'commons-compress').version('1.24.0')