search

eclipse-paho / paho.mqtt-spy

mqtt-spy is an open source desktop & command line utility intended to help you with monitoring activity on MQTT topics
Other
620 stars 145 forks source link

There is a vulnerability in Protocol Buffers 2.6.1 ,upgrade recommended #99

Open QiAnXinCodeSafe opened 3 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/eclipse/paho.mqtt-spy/blob/41f477215fa54d6db31499eb3b2dc3dc539503c1/mqtt-spy-common/pom.xml#L70

CVE-2015-5237

Recommended upgrade version: 3.0.0-9ubuntu5