Uploaded image for project: 'Kafka'
  1. Kafka
  2. KAFKA-15504

Upgrade snappy java to version 1.1.10.4

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • None
    • None
    • None
    • None

    Description

      The version 1.1.10.4 contains a fix of CVE-2023-43642 as mentioned on the release notes of the library https://github.com/xerial/snappy-java/releases/tag/v1.1.10.4  Fixed SnappyInputStream so as not to allocate too large memory when decompressing data with an extremely large chunk size by

       

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. KAFKA-15498 Upgrade Snappy-Java to 1.1.10.4

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved
          links to

          Web Link GitHub Pull Request #14450

          Activity

            People

              bmscomp Said BOUDJELDA
              bmscomp Said BOUDJELDA
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: