From 6c1fe80368759b79e46cb3afae65592c55e07808 Mon Sep 17 00:00:00 2001 From: ballerina-bot Date: Fri, 13 Oct 2023 10:03:49 +0000 Subject: [PATCH 1/6] [Automated] Update the native jar versions --- ballerina/Dependencies.toml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/ballerina/Dependencies.toml b/ballerina/Dependencies.toml index 6fe6553528..29b4c94517 100644 --- a/ballerina/Dependencies.toml +++ b/ballerina/Dependencies.toml @@ -51,7 +51,7 @@ modules = [ [[package]] org = "ballerina" name = "crypto" -version = "2.3.2" +version = "2.3.0" dependencies = [ {org = "ballerina", name = "jballerina.java"}, {org = "ballerina", name = "time"} @@ -304,7 +304,7 @@ dependencies = [ [[package]] org = "ballerina" name = "regex" -version = "1.4.3" +version = "1.4.0" dependencies = [ {org = "ballerina", name = "jballerina.java"}, {org = "ballerina", name = "lang.string"} @@ -325,7 +325,7 @@ dependencies = [ [[package]] org = "ballerina" name = "time" -version = "2.2.5" +version = "2.2.4" dependencies = [ {org = "ballerina", name = "jballerina.java"} ] @@ -336,7 +336,7 @@ modules = [ [[package]] org = "ballerina" name = "url" -version = "2.2.4" +version = "2.2.3" dependencies = [ {org = "ballerina", name = "jballerina.java"} ] From e81e24c3592174b920ac8b7913ee8ba206140994 Mon Sep 17 00:00:00 2001 From: ballerina-bot Date: Fri, 13 Oct 2023 10:37:32 +0000 Subject: [PATCH 2/6] [Automated] Update the native jar versions --- ballerina-tests/http-advanced-tests/Ballerina.toml | 2 +- ballerina-tests/http-client-tests/Ballerina.toml | 2 +- ballerina-tests/http-dispatching-tests/Ballerina.toml | 2 +- ballerina-tests/http-interceptor-tests/Ballerina.toml | 2 +- ballerina-tests/http-misc-tests/Ballerina.toml | 2 +- ballerina-tests/http-resiliency-tests/Ballerina.toml | 2 +- ballerina-tests/http-security-tests/Ballerina.toml | 2 +- ballerina-tests/http-service-tests/Ballerina.toml | 2 +- ballerina-tests/http2-tests/Ballerina.toml | 2 +- 9 files changed, 9 insertions(+), 9 deletions(-) diff --git a/ballerina-tests/http-advanced-tests/Ballerina.toml b/ballerina-tests/http-advanced-tests/Ballerina.toml index f8064736ae..036404ce1f 100644 --- a/ballerina-tests/http-advanced-tests/Ballerina.toml +++ b/ballerina-tests/http-advanced-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-client-tests/Ballerina.toml b/ballerina-tests/http-client-tests/Ballerina.toml index be59583b77..96c8e67c8f 100644 --- a/ballerina-tests/http-client-tests/Ballerina.toml +++ b/ballerina-tests/http-client-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-dispatching-tests/Ballerina.toml b/ballerina-tests/http-dispatching-tests/Ballerina.toml index 111d5bf9b7..dab363a221 100644 --- a/ballerina-tests/http-dispatching-tests/Ballerina.toml +++ b/ballerina-tests/http-dispatching-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-interceptor-tests/Ballerina.toml b/ballerina-tests/http-interceptor-tests/Ballerina.toml index 9ede48adc2..24fc331ec9 100644 --- a/ballerina-tests/http-interceptor-tests/Ballerina.toml +++ b/ballerina-tests/http-interceptor-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-misc-tests/Ballerina.toml b/ballerina-tests/http-misc-tests/Ballerina.toml index 39d692321e..0120a6a751 100644 --- a/ballerina-tests/http-misc-tests/Ballerina.toml +++ b/ballerina-tests/http-misc-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-resiliency-tests/Ballerina.toml b/ballerina-tests/http-resiliency-tests/Ballerina.toml index df8038aaf6..bde4389d52 100644 --- a/ballerina-tests/http-resiliency-tests/Ballerina.toml +++ b/ballerina-tests/http-resiliency-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-security-tests/Ballerina.toml b/ballerina-tests/http-security-tests/Ballerina.toml index 4143a6a011..143054869b 100644 --- a/ballerina-tests/http-security-tests/Ballerina.toml +++ b/ballerina-tests/http-security-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http-service-tests/Ballerina.toml b/ballerina-tests/http-service-tests/Ballerina.toml index 25979e908e..d52ef908cc 100644 --- a/ballerina-tests/http-service-tests/Ballerina.toml +++ b/ballerina-tests/http-service-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" diff --git a/ballerina-tests/http2-tests/Ballerina.toml b/ballerina-tests/http2-tests/Ballerina.toml index 8caee43bb2..d1c850dcd2 100644 --- a/ballerina-tests/http2-tests/Ballerina.toml +++ b/ballerina-tests/http2-tests/Ballerina.toml @@ -11,4 +11,4 @@ version = "2.7.3" [[platform.java11.dependency]] scope = "testOnly" -path = "../../test-utils/build/libs/http-test-utils-2.7.3-SNAPSHOT.jar" +path = "../../test-utils/build/libs/http-test-utils-2.7.3.jar" From 6bbb954dfc3fd4b970876abc3796a22fc2c5b2f7 Mon Sep 17 00:00:00 2001 From: ballerina-bot Date: Fri, 13 Oct 2023 10:37:32 +0000 Subject: [PATCH 3/6] [Automated] Update the native jar versions --- ballerina/Ballerina.toml | 2 +- ballerina/CompilerPlugin.toml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/ballerina/Ballerina.toml b/ballerina/Ballerina.toml index 7d6748f332..8cff41b9b7 100644 --- a/ballerina/Ballerina.toml +++ b/ballerina/Ballerina.toml @@ -13,7 +13,7 @@ distribution = "2201.5.0" groupId = "io.ballerina.stdlib" artifactId = "http-native" version = "2.7.3" -path = "../native/build/libs/http-native-2.7.3-SNAPSHOT.jar" +path = "../native/build/libs/http-native-2.7.3.jar" [[platform.java11.dependency]] groupId = "io.ballerina.stdlib" diff --git a/ballerina/CompilerPlugin.toml b/ballerina/CompilerPlugin.toml index 301a1b9b8b..78a9b4e390 100644 --- a/ballerina/CompilerPlugin.toml +++ b/ballerina/CompilerPlugin.toml @@ -3,4 +3,4 @@ id = "http-compiler-plugin" class = "io.ballerina.stdlib.http.compiler.HttpCompilerPlugin" [[dependency]] -path = "../compiler-plugin/build/libs/http-compiler-plugin-2.7.3-SNAPSHOT.jar" +path = "../compiler-plugin/build/libs/http-compiler-plugin-2.7.3.jar" From ecedc702d454aaea8cb5a5a2ba40a452be285f53 Mon Sep 17 00:00:00 2001 From: ballerina-bot Date: Fri, 13 Oct 2023 10:37:32 +0000 Subject: [PATCH 4/6] [Gradle Release Plugin] - pre tag commit: 'v2.7.3'. --- gradle.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gradle.properties b/gradle.properties index e9b6befd13..518290e9b5 100644 --- a/gradle.properties +++ b/gradle.properties @@ -1,6 +1,6 @@ org.gradle.caching=true group=io.ballerina.stdlib -version=2.7.3-SNAPSHOT +version=2.7.3 ballerinaLangVersion=2201.5.0 ballerinaTomlParserVersion=1.2.2 commonsLang3Version=3.8.1 From 12edd3bd54116805a20e1f4a9b5d060b03c0d696 Mon Sep 17 00:00:00 2001 From: ballerina-bot Date: Fri, 13 Oct 2023 10:37:34 +0000 Subject: [PATCH 5/6] [Gradle Release Plugin] - new version commit: 'v2.7.4-SNAPSHOT'. --- gradle.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gradle.properties b/gradle.properties index 518290e9b5..0e03ea3001 100644 --- a/gradle.properties +++ b/gradle.properties @@ -1,6 +1,6 @@ org.gradle.caching=true group=io.ballerina.stdlib -version=2.7.3 +version=2.7.4-SNAPSHOT ballerinaLangVersion=2201.5.0 ballerinaTomlParserVersion=1.2.2 commonsLang3Version=3.8.1 From b8a0af2aa23cf726e69f5639c127cf8676f4d7e5 Mon Sep 17 00:00:00 2001 From: Krishnananthalingam Tharmigan <63336800+TharmiganK@users.noreply.github.com> Date: Fri, 13 Oct 2023 16:35:42 +0530 Subject: [PATCH 6/6] Update changelog --- changelog.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/changelog.md b/changelog.md index 961bd8c91c..6ca38977e4 100644 --- a/changelog.md +++ b/changelog.md @@ -5,6 +5,11 @@ This file contains all the notable changes done to the Ballerina HTTP package th The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [2.7.3] - 2023-10-13 + +### Fixed +- [Address CVE-2023-4586 netty Vulnerability](https://github.com/ballerina-platform/ballerina-standard-library/issues/4908) + ## [2.7.1] - 2023-06-27 ### Fixed