From e69f37d32bbb7b41a9448eae3f1ee8252f0dbadf Mon Sep 17 00:00:00 2001
From: Marek Novotny <marek.novotny@h2o.ai>
Date: Wed, 13 Sep 2023 12:48:37 +0200
Subject: [PATCH] [GH-15752] Upgrade snappy-java in Main and Steam Standalone
 Jar

---
 h2o-assemblies/main/build.gradle  | 5 +++++
 h2o-assemblies/steam/build.gradle | 5 +++++
 2 files changed, 10 insertions(+)

diff --git a/h2o-assemblies/main/build.gradle b/h2o-assemblies/main/build.gradle
index ec63f9c00e73..4dd3c0dd5d1c 100644
--- a/h2o-assemblies/main/build.gradle
+++ b/h2o-assemblies/main/build.gradle
@@ -56,6 +56,11 @@ dependencies {
             because 'Fixes CVE-2020-8908'
             because 'Fixes CVE-2018-10237'
         }
+        api('org.xerial.snappy:snappy-java:1.1.10.3') {
+            because 'Fixes CVE-2023-34455'
+            because 'Fixes CVE-2023-34454'
+            because 'Fixes CVE-2023-34453'
+        }
     }
 }
 
diff --git a/h2o-assemblies/steam/build.gradle b/h2o-assemblies/steam/build.gradle
index 210cb0d94e6c..d96b7e5dbf9e 100644
--- a/h2o-assemblies/steam/build.gradle
+++ b/h2o-assemblies/steam/build.gradle
@@ -72,6 +72,11 @@ dependencies {
             because 'Fixes CVE-2020-8908'
             because 'Fixes CVE-2018-10237'
         }
+        api('org.xerial.snappy:snappy-java:1.1.10.3') {
+            because 'Fixes CVE-2023-34455'
+            because 'Fixes CVE-2023-34454'
+            because 'Fixes CVE-2023-34453'
+        }
     }
 }