[jira] [Resolved] (KAFKA-15504) Upgrade snappy java to version 1.1.10.4

Divij Vaidya (Jira) Tue, 26 Sep 2023 01:35:42 -0700


     [ 
https://issues.apache.org/jira/browse/KAFKA-15504?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Divij Vaidya resolved KAFKA-15504.
----------------------------------
    Resolution: Duplicate

Closing as duplicate of prior ticket 
https://issues.apache.org/jira/browse/KAFKA-15498. 

> Upgrade snappy java to version 1.1.10.4
> ---------------------------------------
>
>                 Key: KAFKA-15504
>                 URL: https://issues.apache.org/jira/browse/KAFKA-15504
>             Project: Kafka
>          Issue Type: Improvement
>            Reporter: Said BOUDJELDA
>            Assignee: Said BOUDJELDA
>            Priority: Major
>
> The version 1.1.10.4 contains a fix of 
> [CVE-2023-43642|https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv]
>  as mentioned on the release notes of the library 
> [https://github.com/xerial/snappy-java/releases/tag/v1.1.10.4]  Fixed 
> SnappyInputStream so as not to allocate too large memory when decompressing 
> data with an extremely large chunk size by
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (KAFKA-15504) Upgrade snappy java to version 1.1.10.4

Reply via email to