Snyk: libsnowflakeclient com.google.guava:guava 20.0 | Snyk ID - SNYK-JAVA-COMGOOGLEGUAVA-5710356

Question

Closed this issue 10 months ago · 1 comments

Title: Snyk: libsnowflakeclient com.google.guava:guava 20.0
Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/38e72ba0-ce49-4c87-adae-b876d6c5adac
Repo: libsnowflakeclient
CVE: CVE-2023-2976
Package Type: java
Package Name: com.google.guava:guava
Package Version: 20.0
Snyk ID: SNYK-JAVA-COMGOOGLEGUAVA-5710356
Vulnerability URL: http://security.snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
Severity: low
Introduced Date: 2023-06-30
Projects with Vulnerability: snowflakedb/libsnowflakeclient:deps/arrow-0.17.1/java/flight/flight-grpc/pom.xml
Target File: deps/arrow-0.17.1/java/flight/flight-grpc/pom.xml
JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-976941

Answer 1 · 2023-11-29T02:42:21.000Z

False alarm as the target file doesn't exist in the latest code, close.