From 452c670124cc186c62f3062c70b97c9b3a7f2442 Mon Sep 17 00:00:00 2001
From: Abhishek Agarwal <1477457+abhishekagarwal87@users.noreply.github.com>
Date: Tue, 2 Mar 2021 13:41:01 +0530
Subject: [PATCH] Suppress CVE-2017-15288 and upgrade bcprov-ext-jdk15o

---
 extensions-core/kubernetes-extensions/pom.xml | 6 ++++++
 licenses.yaml                                 | 2 +-
 owasp-dependency-check-suppressions.xml       | 7 +++++++
 3 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/extensions-core/kubernetes-extensions/pom.xml b/extensions-core/kubernetes-extensions/pom.xml
index 1f663142d161..7a51eb5a29a4 100644
--- a/extensions-core/kubernetes-extensions/pom.xml
+++ b/extensions-core/kubernetes-extensions/pom.xml
@@ -93,6 +93,12 @@
       <version>1.68</version>
       <scope>runtime</scope>
     </dependency>
+    <dependency>
+      <groupId>org.bouncycastle</groupId>
+      <artifactId>bcprov-ext-jdk15on</artifactId>
+      <version>1.68</version>
+      <scope>runtime</scope>
+    </dependency>
 
     <!-- others -->
     <dependency>
diff --git a/licenses.yaml b/licenses.yaml
index 73b6f9624900..2877fb93ef08 100644
--- a/licenses.yaml
+++ b/licenses.yaml
@@ -1041,7 +1041,7 @@ name: org.bouncycastle bcprov-ext-jdk15on
 license_category: binary
 module: extensions/druid-kubernetes-extensions
 license_name: MIT License
-version: 1.66
+version: 1.68
 libraries:
   - org.bouncycastle: bcprov-ext-jdk15on
 
diff --git a/owasp-dependency-check-suppressions.xml b/owasp-dependency-check-suppressions.xml
index aba002c03b37..b83a96ae924c 100644
--- a/owasp-dependency-check-suppressions.xml
+++ b/owasp-dependency-check-suppressions.xml
@@ -300,4 +300,11 @@
      <cve>CVE-2018-11765</cve>
      <cve>CVE-2020-9492</cve>
   </suppress>
+  <suppress>
+    <!-- We don't use scala compilation daemon. -->
+    <notes><![CDATA[
+     file name: kafka-clients-2.7.0.jar
+     ]]></notes>
+    <cve>CVE-2017-15288</cve>
+  </suppress>
 </suppressions>