Open cesaroangelo opened 1 year ago
Kafka 3.5.1 fixes CVE-2023-34455 - Kafka CLIENTS USING SNAPPY COMPRESSION MAY CAUSE OUT OF MEMORY ERROR ON BROKERS
https://nvd.nist.gov/vuln/detail/CVE-2023-34455 https://kafka.apache.org/cve-list.html
Would it be possible to upgrade the Kafka library to 3.5.1 to fix this CVE?
Related to: https://github.com/linkedin/cruise-control/issues/2044
This should be covered by #2057 now
Kafka 3.5.1 fixes CVE-2023-34455 - Kafka CLIENTS USING SNAPPY COMPRESSION MAY CAUSE OUT OF MEMORY ERROR ON BROKERS
https://nvd.nist.gov/vuln/detail/CVE-2023-34455 https://kafka.apache.org/cve-list.html
Would it be possible to upgrade the Kafka library to 3.5.1 to fix this CVE?