Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency to address Vulnerability CVE-2022-38752 #4660

Closed
alice-66-zhang opened this issue Nov 7, 2022 · 1 comment
Closed

Update dependency to address Vulnerability CVE-2022-38752 #4660

alice-66-zhang opened this issue Nov 7, 2022 · 1 comment
Milestone
3.18.0

Comments

@alice-66-zhang
Copy link

Expected behavior
No vulnerabilities reported.

Actual behavior
Vulnerability CVE-2022-38752

Steps to reproduce or test case
Vulnerability CVE-2022-38752
Vulnerable library: snakeyaml-1.31.jar
Suggest to upgrade to snakeyaml-1.32.jar

Redis version
6.2.4

Redisson version
3.17.7

Redisson configuration
mrniko pushed a commit that referenced this issue Nov 8, 2022
snakeyaml lib updated #4660
746f97d
@mrniko mrniko added this to the 3.17.8 milestone Nov 8, 2022
@mrniko
Copy link
Member

mrniko commented Nov 8, 2022

Fixed. Thanks for report

@mrniko mrniko closed this as completed Nov 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
3.18.0
Development

No branches or pull requests
2 participants
@mrniko @alice-66-zhang