From b000785aa0d4c82b93f97e4b2dc671e98005568b Mon Sep 17 00:00:00 2001
From: Leonie Koch <leonie.koch@digitalservice.bund.de>
Date: Fri, 27 Dec 2024 10:29:57 +0100
Subject: [PATCH] Pin version to fix CVE

RISDEV-0000
---
 backend/build.gradle.kts | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/backend/build.gradle.kts b/backend/build.gradle.kts
index 90effed74..3bd4cc23f 100644
--- a/backend/build.gradle.kts
+++ b/backend/build.gradle.kts
@@ -160,6 +160,8 @@ dependencies {
 
     implementation("org.springframework.cloud:spring-cloud-starter-kubernetes-client-config:3.1.4")
 
+    // CVE-2024-50379
+    implementation ("org.apache.tomcat.embed:tomcat-embed-core:10.1.34")
     // CVE-2024-26308
     implementation("org.apache.commons:commons-compress:1.27.1")
     // CVE-2022-3171