Craig Muchinsky
Craig Muchinsky
### Package URl pkg:maven/com.openhtmltopdf/[email protected] ### CPE cpe:2.3:a:jsoup:jsoup:1.0.0:*:*:*:*:*:*:* ### CVE CVE-2021-37714, CVE-2015-6748 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.1 ### Description openhtmltopdf-jsoup-dom-converter-1.0.0.jar flagged with cpe:2.3:a:jsoup:jsoup:1.0.0:*:*:*:*:*:*:*
[FP]: flexmark-ext-xwiki-macros-0.62.2.jar flagged with cpe:2.3:a:xwiki:xwiki:0.62.2:*:*:*:*:*:*:*
### Package URl pkg:maven/com.vladsch.flexmark/[email protected] ### CPE cpe:2.3:a:xwiki:xwiki:0.62.2:*:*:*:*:*:*:* ### CVE CVE-2022-29161, CVE-2020-15252, CVE-2010-4641, CVE-2020-13654, CVE-2022-23619, CVE-2020-15171, CVE-2021-32732, CVE-2022-23617, CVE-2021-29459, CVE-2022-23618, CVE-2022-23622, CVE-2021-32730, CVE-2018-16277, CVE-2022-23620, CVE-2022-24819, CVE-2022-24820, CVE-2022-23621, CVE-2010-4642, CVE-2007-4898 ### ODC...
### Package URl pkg:maven/com.vladsch.flexmark/[email protected] ### CPE cpe:2.3:a:processing:processing:0.62.2:*:*:*:*:*:*:* ### CVE CVE-2018-1000840 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.1 ### Description flexmark-ext-macros-0.62.2.jar flagged with cpe:2.3:a:processing:processing:0.62.2:*:*:*:*:*:*:*
### Package URl pkg:maven/org.jfrog.artifactory.client/[email protected] ### CPE cpe:2.3:a:jfrog:artifactory:2.13.0:*:*:*:*:*:*:* ### CVE CVE-2016-10036, CVE-2019-17444, CVE-2020-7931, CVE-2021-3860, CVE-2018-1000424, CVE-2020-2165, CVE-2019-19937, CVE-2019-10324, CVE-2020-2164, CVE-2021-41834, CVE-2019-10321, CVE-2019-10322, CVE-2019-10323 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version...
This should resolve https://github.com/google/closure-compiler/issues/3957, which I believe was closed prematurely without a fix. This is needed because the closure-compiler jar is being flagged with CVE-2022-25647 as a result of the...
The `GsonParser` is converting longs to doubles within the `numberHolder` implementation. Instead of calling `return jsonProvider.primitive(jsonReader.nextString());` perhaps something like this would work better: ``` final String value = jsonReader.nextString(); try...
### Package URl pkg:maven/com.graphql-java-kickstart/[email protected] ### CPE cpe:2.3:a:graphql-java_project:graphql-java:13.0.0:*:*:*:*:*:*:* ### CVE CVE-2022-37734 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.2 ### Description graphql-java-tools-13.0.0.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:13.0.0:*:*:*:*:*:*:*
### Package URl pkg:maven/com.graphql-java-kickstart/[email protected] ### CPE cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:*:*:*:*:*:*:* ### CVE CVE-2022-37734 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.2 ### Description graphql-java-servlet-14.0.0.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:*:*:*:*:*:*:*
### Package URl pkg:maven/com.graphql-java-kickstart/[email protected] ### CPE cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:*:*:*:*:*:*:* ### CVE CVE-2022-37734 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.2 ### Description graphql-java-kickstart-14.0.0.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:14.0.0:*:*:*:*:*:*:*
### Package URl pkg:maven/com.graphql-java/[email protected] ### CPE cpe:2.3:a:graphql-java_project:graphql-java:18.1:*:*:*:*:*:*:* ### CVE CVE-2022-37734 ### ODC Integration {"label"=>"Gradle Plugin"} ### ODC Version 7.1.2 ### Description graphql-java-extended-scalars-18.1.jar flagged with cpe:2.3:a:graphql-java_project:graphql-java:18.1:*:*:*:*:*:*:*