diff --git a/src/VcpkgPortOverlay/CreatePortOverlay.ps1 b/src/VcpkgPortOverlay/CreatePortOverlay.ps1 index 4b0685c050..bb846f5021 100644 --- a/src/VcpkgPortOverlay/CreatePortOverlay.ps1 +++ b/src/VcpkgPortOverlay/CreatePortOverlay.ps1 @@ -560,7 +560,7 @@ if ($StampFile) { } try { - New-PortOverlay cpprestsdk -Version 2.10.18 -PortVersion 4 + New-PortOverlay cpprestsdk -Version 2.10.19 -PortVersion 5 Add-LocalPatch cpprestsdk 'add-server-certificate-validation.patch' New-PortOverlay detours -Version 4.0.1 -PortVersion 8 diff --git a/src/VcpkgPortOverlay/README.md b/src/VcpkgPortOverlay/README.md index 6067b54151..3b559264dc 100644 --- a/src/VcpkgPortOverlay/README.md +++ b/src/VcpkgPortOverlay/README.md @@ -8,7 +8,7 @@ The whole directory can be re-created with `.\CreatePortOverlay.ps1` ## cpprestsdk We add support for certificate pinning. -Note that we use v2.10.18, which is not the latest. +Note that we use v2.10.19 Changes: * Add patch file: `add-server-certificate-validation.patch` @@ -38,4 +38,4 @@ We use an unreleased version that fixes a vulnerability. Changes: * New source commit: https://github.com/yaml/libyaml/commit/840b65c40675e2d06bf40405ad3f12dec7f35923 -* Increase the port version so that Component Governance doesn't see it as the vulnerable version anymore \ No newline at end of file +* Increase the port version so that Component Governance doesn't see it as the vulnerable version anymore