bytedance/AabResGuard

There is a vulnerability in guava:27.0.1-jre,upgrade recommended

QiAnXinCodeSafe opened this issue · 1 comments

QiAnXinCodeSafe commented

AabResGuard/core/build.gradle

Line 38 in e8f3a5d

shadow "com.google.guava:guava:27.0.1-jre"

CVE-2020-8908

Recommended upgrade version:30.0-jre

martinloren commented

Fix in pull request...