[202012][Security][CVE-2022-2309] Upgrade lxml from 4.6.5 to 4.9.1 (#…

…14066) Why I did it Fix CVE-2022-2309, upgrade lxml from 4.6.3 to 4.9.1
sonic-net · Mar 7, 2023 · 2ca6ec4 · 2ca6ec4
1 parent 280939b
commit 2ca6ec4
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/sonic-config-engine/setup.py b/src/sonic-config-engine/setup.py
@@ -7,7 +7,7 @@
 dependencies = [
     'bitarray==1.5.3',
     'ipaddress==1.0.23',
-    'lxml==4.6.3',
+    'lxml==4.9.1',
     'netaddr==0.8.0',
     'pyyaml==5.4.1',
     'sonic-py-common',