[ZOOKEEPER-4707] Update snappy-java to address multiple CVEs - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 3.7.1, 3.8.1
Fix Version/s: 3.9.0, 3.7.2, 3.8.2
Component/s: None
Labels:
- pull-request-available

Description

Address multiple CVEs:
CVE-2023-34453
CVE-2023-34454
CVE-2023-34455

See https://github.com/xerial/snappy-java/releases/tag/v1.1.10.1

Attachments

Issue Links

links to

GitHub Pull Request #2014

Activity

People

Assignee:: Unassigned

Reporter:: Lari Hotari

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 19/Jun/23 08:01

Updated:: 04/Aug/23 11:28

Resolved:: 04/Jul/23 10:57

Time Tracking

Estimated:

Not Specified

Remaining:

0h

Logged:

40m