Dependency upgrade
Closed this issue · 0 comments
ckunki commented
See log messages from build job Dependency Check:
- org.xerial.snappy:snappy-java:jar:1.1.8.3 in compile
- CVE-2023-34453, severity CWE-190: Integer Overflow or Wraparound (7.5)
- CVE-2023-34454, severity CWE-190: Integer Overflow or Wraparound (7.5)
- CVE-2023-34455, severity CWE-770: Allocation of Resources Without Limits or Throttling (7.5)