[CASSANDRA-18609] snappy-java vulnerability: CVE-2023-34453 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Normal
Resolution: Fixed
Fix Version/s: 3.0.x, 3.11.x, 4.0.x, 4.1.x, 5.x
Component/s: Feature/Compression
Labels:
None

Bug Category:
Degradation - Other Exception
Severity:
Normal
Complexity:
Normal
Discovered By:
User Report
Platform:

All
Impacts:

None

Description

Failing owasp:

https://nvd.nist.gov/vuln/detail/CVE-2023-34453

Due to unchecked multiplications, an integer overflow may occur in versions prior to 1.1.10.1, causing a fatal error.

Attachments

Issue Links

duplicates

CASSANDRA-18608 snappy-java vulnerability: CVE-2023-34455, CVE-2023-34454, CVE-2023-34453

Resolved

Activity

People

Assignee:: Brandon Williams

Reporter:: Brandon Williams

Authors:: Brandon Williams

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 18/Jun/23 13:40

Updated:: 22/Jun/23 16:45

Resolved:: 22/Jun/23 16:45