search

confluentinc / kafka-connect-datagen

Connector that generates data for demos
Apache License 2.0
19 stars 87 forks source link

CC-21503 Increase guava version to 32.0.1-jre to address CVE-2023-2976 #124

Closed shaikzakiriitm closed 1 year ago

shaikzakiriitm commented 1 year ago

Problem

https://nvd.nist.gov/vuln/detail/CVE-2023-2976

Solution

Increasing guava dependency version to recommended 32.0.1-jre.

Does this solution apply anywhere else?
If yes, where?

Test Strategy

All existing unit tests run fine.

Testing done:

Release Plan