Uploaded image for project: 'JBeret'
  1. JBeret
  2. JBERET-592

Upgrade Guava for 31.1 to 32.1.1 (resolves CVE-2023-2976)

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • 2.1.2.Final
    • None
    • jberet-core
    • None

      Our current guava release has a CVE (CVE-2023-2976); update it.

      Moving to 32.0.1 is sufficient to resolve the CVE but it seems reasonable to go to the latest release, 32.1.1.

       

      31.1 -> 32.1.1 https://github.com/google/guava/compare/v31.1...v32.1.1

      31.1 -> 32.0.1 https://github.com/google/guava/compare/v31.1...v32.0.1

      32.0.1 -> 32.1.1 https://github.com/google/guava/compare/v32.0.1...v32.1.1

       

              cfang@redhat.com Cheng Fang
              cfang@redhat.com Cheng Fang
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: