Dependency upgrade

Question

Closed this issue a year ago · 0 comments

See log messages from build job Dependency Check:

org.xerial.snappy:snappy-java:jar:1.1.8.3 in compile
- CVE-2023-34453, severity CWE-190: Integer Overflow or Wraparound (7.5)
- CVE-2023-34454, severity CWE-190: Integer Overflow or Wraparound (7.5)
- CVE-2023-34455, severity CWE-770: Allocation of Resources Without Limits or Throttling (7.5)