From 16d586988f449137a344a3d49648a6bca4dae6a7 Mon Sep 17 00:00:00 2001
From: Konrad Windszus <konrad.windszus@netcentric.biz>
Date: Sat, 16 May 2026 12:24:34 +0200
Subject: [PATCH] Upgrade to Tomcat EL 10.1.55

This prevents false positives for CVE-2026-41284(7.5) and
CVE-2026-42498(7.3)
---
 accesscontroltool-bundle/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/accesscontroltool-bundle/pom.xml b/accesscontroltool-bundle/pom.xml
index 8bc1cefe..9d3c69cb 100644
--- a/accesscontroltool-bundle/pom.xml
+++ b/accesscontroltool-bundle/pom.xml
@@ -24,7 +24,7 @@
     <description>The OSGi bundle containing all classes of the Access Control Tool.</description>
     
     <properties>
-        <tomcat.el.version>10.1.54</tomcat.el.version>
+        <tomcat.el.version>10.1.55</tomcat.el.version>
         <oak.testing.version>1.74.0</oak.testing.version><!-- ITs require a newer version of Oak otherwise it won't work with Java 23+ (https://issues.apache.org/jira/browse/OAK-11199) and certain classes for running the IT are not available -->
     </properties>