Open renovate-06-kbuild[bot] opened 1 month ago
This PR contains the following updates:
2.8.0
2.14.0
Uncontrolled Resource Consumption vulnerability in Apache Commons IO.
The org.apache.commons.io.input.XmlStreamReader class may excessively consume CPU resources when processing maliciously crafted input.
org.apache.commons.io.input.XmlStreamReader
This issue affects Apache Commons IO: from 2.0 before 2.14.0.
Users are recommended to upgrade to version 2.14.0 or later, which fixes the issue.
π Schedule: Branch creation - "" in timezone America/Argentina/Buenos_Aires, Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.
This PR contains the following updates:
2.8.0->2.14.0GitHub Vulnerability Alerts
CVE-2024-47554
Uncontrolled Resource Consumption vulnerability in Apache Commons IO.
The
org.apache.commons.io.input.XmlStreamReaderclass may excessively consume CPU resources when processing maliciously crafted input.This issue affects Apache Commons IO: from 2.0 before 2.14.0.
Users are recommended to upgrade to version 2.14.0 or later, which fixes the issue.
Configuration
π Schedule: Branch creation - "" in timezone America/Argentina/Buenos_Aires, Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.