From a9a9574e0beb62031e67b0bbe73c0fa7cd86622e Mon Sep 17 00:00:00 2001
From: James Gu <jgu@suse.com>
Date: Wed, 7 Mar 2018 13:53:02 -0800
Subject: [PATCH] Update supervisor version lower bound

Supervisor has XML-RPC security vulenalbility. Upgrade to 3.3.3.
Refer to https://nvd.nist.gov/vuln/detail/CVE-2017-11610.

Story: 2001648
Task: 6667

Change-Id: I1f0e2c3436a0bbeeaf8beebcf15b066de5df7c90
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index f26ad214..fa494e82 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -19,7 +19,7 @@ python-monascaclient>=1.7.0 # Apache-2.0
 python-keystoneclient>=3.8.0 # Apache-2.0
 redis>=2.10.0 # MIT
 six>=1.9.0 # MIT
-supervisor>=3.1.3,<3.4
+supervisor>=3.3.3,<3.4 # BSD-derived
 stevedore>=1.20.0 # Apache-2.0
 tornado>=4.3,<=4.5.2
 futures>=3.0;python_version=='2.7' or python_version=='2.6' # BSD