Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Snyk: snowflake-jdbc org.apache.commons:commons-compress 1.23.0 | Snyk ID - SNYK-JAVA-ORGAPACHECOMMONS-5901530 #1533

Closed
github-actions bot opened this issue Oct 17, 2023 · 1 comment
Closed

Snyk: snowflake-jdbc org.apache.commons:commons-compress 1.23.0 | Snyk ID - SNYK-JAVA-ORGAPACHECOMMONS-5901530 #1533

github-actions bot opened this issue Oct 17, 2023 · 1 comment

Comments

@github-actions
Copy link

Title: Snyk: snowflake-jdbc org.apache.commons:commons-compress 1.23.0
Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/480ae46f-80b1-4291-9eee-e907065f9e80
Repo: snowflake-jdbc
CVE: CVE-2023-42503
Package Type: java
Package Name: org.apache.commons:commons-compress
Package Version: 1.23.0
Snyk ID: SNYK-JAVA-ORGAPACHECOMMONS-5901530
Vulnerability URL: http://security.snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-5901530
Severity: medium
Introduced Date: 2023-10-17
Projects with Vulnerability: snowflakedb/snowflake-jdbc:FIPS/pom.xml
Target File: FIPS/pom.xml
JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-943973
@sfc-gh-spanaite sfc-gh-spanaite self-assigned this Nov 14, 2023
@sfc-gh-spanaite sfc-gh-spanaite removed their assignment Jan 29, 2024
@sfc-gh-dprzybysz
Copy link
Collaborator

We are not using commons-compress in version 1.23 in snowflake-jdbc and snowflake-jdbc-fips since version 3.14.4 (we are using in tests version 1.21)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sfc-gh-spanaite @sfc-gh-dprzybysz