openstack
/
monasca-agent
Code Issues Proposed changes

Update supervisor version lower bound 

Supervisor has XML-RPC security vulenalbility. Upgrade to 3.3.3.
Refer to https://nvd.nist.gov/vuln/detail/CVE-2017-11610.

Story: 2001648
Task: 6667

Change-Id: I1f0e2c3436a0bbeeaf8beebcf15b066de5df7c90
This commit is contained in:
James Gu 2018-03-07 13:53:02 -08:00
parent 4b11f413c2
commit 3e94038aba
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
requirements.txt
View File

@ -20,7 +20,7 @@ python-keystoneclient>=3.8.0 # Apache-2.0
redis>=2.10.0 # MIT
six>=1.10.0 # MIT
stevedore>=1.20.0 # Apache-2.0
supervisor>=3.1.3,<3.4 # BSD-derived
supervisor>=3.3.3,<3.4 # BSD-derived
tornado>=4.5.3 # Apache-2.0
futures>=3.0.0;python_version=='2.7' or python_version=='2.6' # BSD
# NOTE(sdague): before allowing in >= 0.21 please be sure