Update dependencies. xmlsec version was vulnerable See CVE-2019-12400

pitbulk · pitbulk · commit 46c29d22b5fe · 2019-09-04T20:19:35.000+02:00
diff --git a/core/pom.xml b/core/pom.xml
@@ -48,7 +48,7 @@
 		<dependency>
 			<groupId>joda-time</groupId>
 			<artifactId>joda-time</artifactId>
-			<version>2.9.4</version>
+			<version>2.10.3</version>
 		</dependency>
 
 		<!-- commons -->
@@ -60,12 +60,12 @@
 		<dependency>
 			<groupId>org.apache.santuario</groupId>
 			<artifactId>xmlsec</artifactId>
-			<version>2.0.7</version>
+			<version>2.1.4</version>
 		</dependency>
 		<dependency>
 			<groupId>commons-codec</groupId>
 			<artifactId>commons-codec</artifactId>
-			<version>1.10</version>
+			<version>1.12</version>
 		</dependency>
 	</dependencies>
 
diff --git a/toolkit/pom.xml b/toolkit/pom.xml
@@ -69,7 +69,7 @@
 		<dependency>
 			<groupId>joda-time</groupId>
 			<artifactId>joda-time</artifactId>
-			<version>2.9.4</version>
+			<version>2.10.3</version>
 		</dependency>
 
 		<!-- commons -->
@@ -81,12 +81,12 @@
 		<dependency>
 			<groupId>org.apache.santuario</groupId>
 			<artifactId>xmlsec</artifactId>
-			<version>2.0.7</version>
+			<version>2.1.4</version>
 		</dependency>
 		<dependency>
 			<groupId>commons-codec</groupId>
 			<artifactId>commons-codec</artifactId>
-			<version>1.10</version>
+			<version>1.12</version>
 		</dependency>
 	</dependencies>
 
