From f28ee6428347bfa9311cdf9558afb874242a9edb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bj=C3=B8rn=20J=C3=B8rgensen?= <bjornjorgensen@gmail.com>
Date: Tue, 14 Nov 2023 12:35:13 +0100
Subject: [PATCH 1/2] 1.

---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index e5e83bca88e..eb9ef269da1 100644
--- a/pom.xml
+++ b/pom.xml
@@ -93,7 +93,7 @@
     <sundrio.version>0.101.3</sundrio.version>
     <okhttp.version>3.12.12</okhttp.version>
     <okhttp.bundle.version>3.12.1_1</okhttp.bundle.version>
-    <okio.version>1.15.0</okio.version>
+    <okio.version>1.17.6</okio.version>
     <okio.bundle.version>1.15.0_1</okio.bundle.version>
     <jackson.version>2.15.3</jackson.version>
     <jetty.version>11.0.18</jetty.version>

From 5b5570c72f36e8c1507120b9acadc3f053ccc6ac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bj=C3=B8rn=20J=C3=B8rgensen?= <bjornjorgensen@gmail.com>
Date: Tue, 14 Nov 2023 15:16:23 +0100
Subject: [PATCH 2/2] update changelog.md

---
 CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index b2e59d63ecd..300af102fb0 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,7 +12,7 @@
 * Fix #5535: Add lombok and sundrio dependencies to the generated bom
 
 #### Dependency Upgrade
-
+* Updated okio to version 1.17.6 to avoid CVE-2023-3635
 #### New Features
 
 #### _**Note**_: Breaking changes