Upgrade to c3p0 0.9.5.3

Description

Update c3p0 dependency to 0.9.5.3+ which addresses the XXE vulnerability (CVE-2018-20433)

https://nvd.nist.gov/vuln/detail/CVE-2018-20433
https://github.com/swaldman/c3p0/blob/master/src/dist-static/CHANGELOG

Environment

None

Assignee

Unassigned

Reporter

Thomas Bürli

Fix versions

Labels

backPortable

None

Suitable for new contributors

Yes, likely

Requires Release Note

None

Pull Request

None

backportDecision

None

Affects versions

Priority

Major
Configure