奇安信CodeSafe
奇安信CodeSafe
https://github.com/bilibili/overlord/blob/b524449801b54115831e7f2663558824bdc15a03/web/yarn.lock#L5135-L5137 CVE-2021-23337 CVE-2020-28500 Recommended upgrade version:4.17.21
https://github.com/bilibili/overlord/blob/470ea6fb708232a56b9d15bcd5fbb65584bca889/web/yarn.lock#L5158-L5160 CVE-2020-8203 Recommended upgrade version:4.17.20
https://github.com/baidu/brpc-java/blob/8556f7cf2c8e5fcea5151a43c948ad4eda5e3646/brpc-spring/pom.xml#L32 CVE-2018-1270 CVE-2020-5421 CVE-2018-1271 CVE-2018-1272 CVE-2015-5211 Recommended upgrade version: 4.3.28-1
https://github.com/baidu/brpc-java/blob/8556f7cf2c8e5fcea5151a43c948ad4eda5e3646/pom.xml#L38 CVE-2015-5237 Recommended upgrade version: 3.4.0
https://github.com/baidu/brpc-java/blob/bcf9a877673547d47098f52eea1af190fdab8a09/brpc-spring/pom.xml#L30-L34 Spring Framework 3.2.11.RELEASE存在CVE-2018-1270、CVE-2015-5211、CVE-2018-1272等安全漏洞 推荐升级版本: 4.3.29.RELEASE
https://github.com/baidu/brpc-java/blob/bcf9a877673547d47098f52eea1af190fdab8a09/brpc-spring/pom.xml#L32 Spring Framework 3.2.11.RELEASE版本存在CVE-2018-1270,CVE-2018-1272、CVE-2016-9878、CVE-2015-5211 等, 推荐升级版本: 4.3.29.RELEASE
https://github.com/baidu/NoahV/blob/f5175edb680f16201462b31dd5211de9eccd4b64/template/common/package.json#L20 CVE-2020-7760 Recommended upgrade version:5.47.1
https://github.com/baidu/NoahV/blob/f5175edb680f16201462b31dd5211de9eccd4b64/tools/noahv-cli/package-lock.json#L1456-L1460 CVE-2021-23358 Recommended upgrade version:1.12.1
https://github.com/google/graphicsfuzz/blob/c775138567a57fd45a2ae6b6f9506af8ecb7fe29/common/src/main/java/com/graphicsfuzz/common/util/Obfuscator.java#L288-L290
https://github.com/google/graphicsfuzz/blob/c775138567a57fd45a2ae6b6f9506af8ecb7fe29/gles-worker/desktop/src/com/graphicsfuzz/glesworker/desktop/DesktopLauncher.java#L49 This field is never used.