[jira] [Updated] (FLINK-33627) Bump snappy-java to 1.1.10.5 in flink-statefun

Ryan Skraba (Jira) Thu, 23 Nov 2023 01:09:07 -0800


     [ 
https://issues.apache.org/jira/browse/FLINK-33627?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Ryan Skraba updated FLINK-33627:
--------------------------------
    Summary: Bump snappy-java to 1.1.10.5 in flink-statefun  (was: Bump 
snappy-java to 1.1.10.4 in flink-statefun)

> Bump snappy-java to 1.1.10.5 in flink-statefun
> ----------------------------------------------
>
>                 Key: FLINK-33627
>                 URL: https://issues.apache.org/jira/browse/FLINK-33627
>             Project: Flink
>          Issue Type: Bug
>          Components: Stateful Functions
>    Affects Versions: statefun-3.3.0
>            Reporter: Ryan Skraba
>            Priority: Major
>
> Xerial published a security alert for a Denial of Service attack that [exists 
> on 
> 1.1.10.1|https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv].
> See FLINK-33149 for flink core and connectors.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (FLINK-33627) Bump snappy-java to 1.1.10.5 in flink-statefun

Reply via email to