From 808b60a9c89c61170a2b2cbc24bf5bf1fe361b7e Mon Sep 17 00:00:00 2001
From: Shyamrox <58111872+shyamrox@users.noreply.github.com>
Date: Tue, 26 Sep 2023 09:53:59 -0400
Subject: [PATCH] Upgrade to xstream 1.4.20 to fix CVE

https://github.com/Netflix/eureka/issues/1483
Fixes:
CVE-2022-40151
CVE-2022-41966
---
 eureka-client/build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/eureka-client/build.gradle b/eureka-client/build.gradle
index a6e556b4a3..3cea559ae6 100644
--- a/eureka-client/build.gradle
+++ b/eureka-client/build.gradle
@@ -7,7 +7,7 @@ configurations.all {
 
 dependencies {
     compile "com.netflix.netflix-commons:netflix-eventbus:0.3.0"
-    compile 'com.thoughtworks.xstream:xstream:1.4.19'
+    compile 'com.thoughtworks.xstream:xstream:1.4.20'
     compile "com.netflix.archaius:archaius-core:${archaiusVersion}"
     compile 'javax.ws.rs:jsr311-api:1.1.1'
     compile "com.netflix.servo:servo-core:${servoVersion}"