HelenParr

Results 40 issues of HelenParr

Potential security vulnerability in the FFmpeg library.

1 comment

Hi, @hendriks73 , @jonashartwig , I'd like to report a vulnerability issue in **com.tagtraum:ffsampledsp-complete:0.9.45**. ### Issue Description **com.tagtraum:ffsampledsp-complete:0.9.45** directly depends on ***1*** C libraries (.so). However, I noticed that this...

bug

Known vulnerabilities in shared library which floorplan-gradle-plugin depends on. Can you help upgrade to patch versions?

1 comment

Hi, @julioz , @tomasz-moscicki-sonalake , I'd like to report a vulnerability issue in **com.juliozynger.floorplan:floorplan-gradle-plugin:0.4**. ### Issue Description **com.juliozynger.floorplan:floorplan-gradle-plugin:0.4** directly or transitively depends on ***26*** C libraries (.so) cross many platforms(such...

Potential secutiry vulnerabilities in the shared libraries which AudioMixer depends on.

Hi, @Piasy , @eritpchy , I'd like to report a vulnerability issue in **com.github.piasy:AudioMixer:1.0.3**. ### Issue Description **com.github.piasy:AudioMixer:1.0.3** directly or transitively depends on ***8*** C libraries (.so) cross many platforms(such...

Vulnerable shared libraries might make unidbg-android vulnerable. Can you help upgrade to patch versions?

Hi, @zhkl0228 , @WebDucerBlog , I'd like to report a vulnerability issue in **com.alidaodao.app:unidbg-android:0.9.5**. ### Issue Description **com.alidaodao.app:unidbg-android:0.9.5** directly or transitively depends on ***34*** C libraries (.so) cross many platforms(such...

Upgrade embedded vulnerable C library lz4 to patch version.

2 comment

Hi, @sboikov , @agoncharuk , I'd like to report a vulnerable dependency issue in **org.apache.ignite:ignite-compress:2.12.0**. ### Issue Description I noticed that **org.apache.ignite:ignite-compress:2.12.0** directly depends on **org.lz4:lz4-java:1.5.0**. However, as shown in...

Could you help upgrade the vulnerble dependency in rasterframes?

1 comment

Hi, @metasim , @vpipkt , I'd like to report a vulnerable dependency in **org.locationtech.rasterframes:rasterframes_2.12:0.10.1**. ### Issue Description I noticed that **org.locationtech.rasterframes:rasterframes_2.12:0.10.1** directly depends on **org.apache.spark:spark-core_2.12:3.1.2** in the [pom](https://repo1.maven.org/maven2/org/locationtech/rasterframes/rasterframes_2.12/0.10.1/rasterframes_2.12-0.10.1.pom). However, as...

enhancement

The known vulnerability in the shared library which RxGalleryFinal depends on.

Hi, @pengjianbo , @7449 , I'd like to report a vulnerability issue in **cn.finalteam.rxgalleryfinal:library:0.0.3**. ### Issue Description **cn.finalteam.rxgalleryfinal:library:0.0.3** directly or transitively depends on ***5*** C libraries (.so) cross many platforms(such...

Known vulnerability in shared library which spectrum depends on.Can you help upgrade to patch versions?

Hi, @lambdapioneer , @cuva , I'd like to report a vulnerability issue in **com.facebook.spectrum:spectrum-png:1.3.0**. ### Issue Description **com.facebook.spectrum:spectrum-png:1.3.0** directly depends on ***4*** C libraries (.so) cross many platforms(such as x86-64,...

Potential security vulnerability in the C library.

1 comment

Hi, @ghislainfourny , @CanBerker , I'd like to report a vulnerable dependency in **com.github.rumbledb:spark-rumble**. ### Issue Description I noticed that **com.github.rumbledb:spark-rumble** directly depends on **org.apache.spark:spark-core_2.12:3.1.2** in the `master` branch. However,...

Vulnerable shared libraries might make tro-server-monitor vulnerable. Can you help upgrade to patch versions?

Hi, @shulieTech , @vinzhangya , I'd like to report a vulnerability issue in **io.shulie.tro:tro-server-monitor:1.15.0**. ### Issue Description **io.shulie.tro:tro-server-monitor:1.15.0** directly or transitively depends on ***42*** C libraries (.so) cross many platforms(such...