conductor icon indicating copy to clipboard operation
conductor copied to clipboard

Published 20 hours ago verified publisher icon Netflix

PX-1012: Fixing the Xstream Library Security leak.

Open hchepey-clari opened this issue 2 years ago • 0 comments

Pull Request type

  • [x] Bugfix
  • [ ] Feature
  • [ ] Refactoring (no functional changes, no api changes)
  • [ ] Build related changes (Please run ./gradlew generateLock saveLock to refresh dependencies)
  • [ ] WHOSUSING.md
  • [ ] Other (please describe):

NOTE: Please remember to run ./gradlew spotlessApply to fix any format violations.

Changes in this PR

Describe the new behavior from this PR, and why it's needed This PR is about fixing the security leak vulnerability in the xsteam package which could enable for a potential RCE attack. So, upgraded Netflix Eureka library which was using this xstream package.

Alternatives considered

Describe alternative implementation you have considered

hchepey-clari avatar Nov 14 '22 05:11 hchepey-clari