search

exasol / spark-connector

A connector for Apache Spark to access Exasol
Apache License 2.0
12 stars 7 forks source link

Fix vulnerabilitiy in dnsjava:dnsjava:jar:2.1.7:provided #228

Closed kaklakariada closed 2 weeks ago

kaklakariada commented 1 month ago 
Error:  Failed to execute goal org.sonatype.ossindex.maven:ossindex-maven-plugin:3.2.0:audit (default-cli) on project spark-connector-jdbc_2.13: Detected 1 vulnerable components:
Error:    dnsjava:dnsjava:jar:2.1.7:provided; https://ossindex.sonatype.org/component/pkg:maven/dnsjava/dnsjava@2.1.7?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1
Error:      * [CVE-2024-25638] CWE-345: Insufficient Verification of Data Authenticity (8.9); https://ossindex.sonatype.org/vulnerability/CVE-2024-25638?component-type=maven&component-name=dnsjava%2Fdnsjava&utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1