hiifong/pmd
1
0
Fork 0
forked from phoedos/pmd
Code Pull Requests Activity

Upgrade com.google.protobuf:protobuf-java from 3.7.1 to 3.16.1

Browse Source 
Fixes CVE-2021-22569 A potential Denial of Service issue in protobuf-java
https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-wrvw-hg22-4m67
This commit is contained in:
Andreas Dangel 2022-06-09 16:22:29 +02:00
parent a8a61f2c44
commit 9537629e58
No known key found for this signature in database
GPG Key ID: 93450DF2DF9A3FA3
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
pom.xml
View File

@ -932,6 +932,16 @@
<artifactId>classgraph</artifactId> <artifactId>classgraph</artifactId>
<version>4.8.112</version> <version>4.8.112</version>
</dependency> </dependency>
<!-- transitive dependency through org.scalameta:trees_2.13
upgrade to 3.16.1 to fix CVE-2021-22569 A potential Denial of Service issue in protobuf-java
https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-wrvw-hg22-4m67
-->
<dependency>
<groupId>com.google.protobuf</groupId>
<artifactId>protobuf-java</artifactId>
<version>3.16.1</version>
</dependency>
</dependencies> </dependencies>
</dependencyManagement> </dependencyManagement>