Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-25356

(8.0.0) Upgrade Guava from 31.1.0.jre-redhat-00001 to 32.1.1.jre-redhat-00001

XMLWordPrintable

      Our current guava release has a CVE (CVE-2023-2976); update it.

      Moving to 32.0.1 is sufficient to resolve the CVE but it seems reasonable to go to the latest release, 32.1.1.

       

      31.1 -> 32.1.1 https://github.com/google/guava/compare/v31.1...v32.1.1

      31.1 -> 32.0.1 https://github.com/google/guava/compare/v31.1...v32.0.1

      32.0.1 -> 32.1.1 https://github.com/google/guava/compare/v32.0.1...v32.1.1

      Tag: https://github.com/google/guava/releases/tag/v32.1.1
      Diff: https://github.com/google/guava/compare/v31.1...v32.1.1
      Hash: 427223e9f94406013f1bc77fa0bd1231a1475645

       

              chaowan@redhat.com Chao Wang
              chaowan@redhat.com Chao Wang
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: