big-data/hadoop
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

HADOOP-18782. Upgrade to snappy-java 1.1.10.1 due to CVEs (#5773)

Browse Source 
Addresses CVE-2023-34454

Contributed by PJ Fanning
This commit is contained in:
PJ Fanning 2023-06-27 11:53:02 +01:00 committed by GitHub
parent 21d9c4727c
commit 56ef05a9ca
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
LICENSE-binary
View File

@ -361,7 +361,7 @@ org.jetbrains.kotlin:kotlin-stdlib:1.4.10
org.jetbrains.kotlin:kotlin-stdlib-common:1.4.10
org.lz4:lz4-java:1.7.1
org.objenesis:objenesis:2.6
org.xerial.snappy:snappy-java:1.0.5
org.xerial.snappy:snappy-java:1.1.10.1
org.yaml:snakeyaml:2.0
org.wildfly.openssl:wildfly-openssl:1.1.3.Final

2
hadoop-project/pom.xml
View File

@ -140,7 +140,7 @@
<gson.version>2.9.0</gson.version>
<metrics.version>3.2.4</metrics.version>
<netty4.version>4.1.89.Final</netty4.version>
<snappy-java.version>1.1.8.2</snappy-java.version>
<snappy-java.version>1.1.10.1</snappy-java.version>
<lz4-java.version>1.7.1</lz4-java.version>
<!-- Maven protoc compiler -->