Said BOUDJELDA created KAFKA-15504: -------------------------------------- Summary: Upgrade snappy java to version 1.1.10.4 Key: KAFKA-15504 URL: https://issues.apache.org/jira/browse/KAFKA-15504 Project: Kafka Issue Type: Improvement Reporter: Said BOUDJELDA Assignee: Said BOUDJELDA
The version 1.1.10.4 contains a fix of [CVE-2023-43642|https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv] as mentioned on the release notes of the library [https://github.com/xerial/snappy-java/releases/tag/v1.1.10.4] Fixed SnappyInputStream so as not to allocate too large memory when decompressing data with an extremely large chunk size by -- This message was sent by Atlassian Jira (v8.20.10#820010)