Ryan Skraba created FLINK-33149:
-----------------------------------
Summary: Bump snappy-java to 1.1.10.4
Key: FLINK-33149
URL: https://issues.apache.org/jira/browse/FLINK-33149
Project: Flink
Issue Type: Bug
Components: API / Core, Connectors / AWS, Connectors / HBase,
Connectors / Kafka, Stateful Functions
Affects Versions: 1.18.0, 1.16.3, 1.17.2
Reporter: Ryan Skraba
Xerial published a security alert for a Denial of Service attack that [exists
on
1.1.10.1|https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv].
This is included in flink-dist, but also in flink-statefun, and several
connectors.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
