diff --git a/.trivyignore b/.trivyignore index 9782d78b7c98..db3762dfc9e5 100644 --- a/.trivyignore +++ b/.trivyignore @@ -4,6 +4,7 @@ CVE-2021-42392 CVE-2022-23221 GHSA-h376-j262-vhq6 GMS-2022-7 +CVE-2022-45868 # com.github.docker-java:docker-java:3.1.5 CVE-2020-13956 diff --git a/bvm/ballerina-rt/build.gradle b/bvm/ballerina-rt/build.gradle index 9fa91c7c6699..d72f50951eea 100644 --- a/bvm/ballerina-rt/build.gradle +++ b/bvm/ballerina-rt/build.gradle @@ -91,7 +91,7 @@ dependencies { dist 'io.opentracing:opentracing-util:0.33.0' dist 'org.awaitility:awaitility:3.1.6' dist 'org.hdrhistogram:HdrHistogram:2.1.10' - dist 'com.h2database:h2:2.2.220' + dist 'com.h2database:h2:1.4.199' dist 'org.hdrhistogram:HdrHistogram:2.1.10' // observability extensions diff --git a/distribution/zip/jballerina-tools/LICENSE b/distribution/zip/jballerina-tools/LICENSE index 97a118321788..46e9bd581581 100644 --- a/distribution/zip/jballerina-tools/LICENSE +++ b/distribution/zip/jballerina-tools/LICENSE @@ -241,7 +241,7 @@ org.wso2.securevault-1.0.0-wso2v2.jar kubernetes.jar jar apache2 debug-adapter-core-1.1.0.jar jar apache2 debug-adapter-cli-1.1.0.jar jar apache2 -h2-2.2.220.jar bundle apache2 +h2-1.4.199.jar bundle apache2 org.eclipse.lsp4j-0.8.1.jar bundle epl1 commons-io-2.11.0.jar bundle apache2 language-server-stdio-launcher-1.1.0.jar jar apache2 diff --git a/distribution/zip/jballerina/LICENSE b/distribution/zip/jballerina/LICENSE index 626181198b16..30ed8700c4c5 100644 --- a/distribution/zip/jballerina/LICENSE +++ b/distribution/zip/jballerina/LICENSE @@ -241,7 +241,7 @@ org.wso2.securevault-1.0.0-wso2v2.jar kubernetes.jar jar apache2 debug-adapter-core-1.1.0.jar jar apache2 debug-adapter-cli-1.1.0.jar jar apache2 -h2-2.2.220.jar bundle apache2 +h2-1.4.199.jar bundle apache2 org.eclipse.lsp4j-0.8.1.jar bundle epl1 commons-io-2.11.0.jar bundle apache2 language-server-stdio-launcher-1.1.0.jar jar apache2 diff --git a/gradle/javaProject.gradle b/gradle/javaProject.gradle index b3c367613aeb..0db05f6b50a6 100644 --- a/gradle/javaProject.gradle +++ b/gradle/javaProject.gradle @@ -37,7 +37,7 @@ dependencies { implementation 'com.atlassian.commonmark:commonmark-ext-gfm-tables:0.11.0' implementation 'com.fasterxml.jackson.core:jackson-databind:2.15.2' implementation 'com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:2.15.2' - implementation 'com.h2database:h2:2.2.220' + implementation 'com.h2database:h2:1.4.199' implementation 'org.hsqldb:hsqldb:2.2.7' implementation 'com.wix:wix-embedded-mysql:4.6.1' implementation 'mysql:mysql-connector-java:8.0.19' diff --git a/language-server/modules/langserver-core/build.gradle b/language-server/modules/langserver-core/build.gradle index 9cb009fe1232..21ec5aada46f 100644 --- a/language-server/modules/langserver-core/build.gradle +++ b/language-server/modules/langserver-core/build.gradle @@ -143,7 +143,7 @@ dependencies { // baloImplementation project(path: ':ballerina-websub', configuration: 'baloImplementation') baloImplementation project(path: ':testerina:testerina-core', configuration: 'baloImplementation') - dependency 'com.h2database:h2:2.2.220' + dependency 'com.h2database:h2:1.4.199' dependency 'org.eclipse.lsp4j:org.eclipse.lsp4j:0.8.1' dependency 'org.eclipse.lsp4j:org.eclipse.lsp4j.jsonrpc:0.8.1' dependency 'commons-io:commons-io:2.11.0'