search

Tencent / TubeMQ

TubeMQ has been donated to the Apache Software Foundation and renamed to InLong, please visit the new Apache repository: https://github.com/apache/incubator-inlong
https://inlong.apache.org/
2.02k stars 388 forks source link

There is a vulnerability in fastjson 1.2.60,upgrade recommended #158

Open QiAnXinCodeSafe opened 3 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/Tencent/TubeMQ/blob/dc64162c0ffc07805f619f17c45c9d387134172a/pom.xml#L248-L250

CVE-2020-8840

Recommended upgrade version:1.2.61.sec10