cdc-apache-cassandra icon indicating copy to clipboard operation
cdc-apache-cassandra copied to clipboard

Published 20 hours ago verified publisher icon datastax

deps: Update versions for fixes

Open nikhilerigila09 opened this issue 9 months ago • 0 comments

Motivation

To Avoid the following Vulnerabilities

  • JSON : CVE-2023-5072
  • Logback-core & Logback-classic : CVE-2023-6378
  • Avro : CVE-2023-39410
  • Guava : CVE-2023-2976, CVE-2020-8908

Modifications

Upgraded Following versions -

  • json : 20230227 -> 20231013
  • logback-core : 1.2.9 -> 1.2.13
  • logback-classic : 1.2.9 -> 1.2.13
  • avro : 1.10.2 -> 1.11.3
  • guava : 30.1-jre -> 32.0.1-jre

Verifying this change

  • [X] Make sure that the change passes the CI checks.

Documentation

Check the box below.

Need to update docs?

  • [ ] doc-required

    (If you need help on updating docs, create a doc issue)

  • [X] no-need-doc

    (Please explain why)

  • [ ] doc

    (If this PR contains doc changes)

nikhilerigila09 avatar May 07 '24 11:05 nikhilerigila09