New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Snyk: libsnowflakeclient com.google.guava:guava 20.0 | Snyk ID - SNYK-JAVA-COMGOOGLEGUAVA-5710356 #577

Closed

github-actions bot opened this issue Oct 24, 2023 · 1 comment

github-actions bot commented Oct 24, 2023

Title: Snyk: libsnowflakeclient com.google.guava:guava 20.0
Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/38e72ba0-ce49-4c87-adae-b876d6c5adac
Repo: libsnowflakeclient
CVE: CVE-2023-2976
Package Type: java
Package Name: com.google.guava:guava
Package Version: 20.0
Snyk ID: SNYK-JAVA-COMGOOGLEGUAVA-5710356
Vulnerability URL: http://security.snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
Severity: low
Introduced Date: 2023-06-30
Projects with Vulnerability: snowflakedb/libsnowflakeclient:deps/arrow-0.17.1/java/flight/flight-grpc/pom.xml
Target File: deps/arrow-0.17.1/java/flight/flight-grpc/pom.xml
JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-949041

ghost commented Nov 22, 2023

fixed in 1.0.4 with #594

ghost closed this as completed

This issue was closed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment