Skip to content

Commit c882817

Browse files
raulcdkou
raulcd
authored and
kou
committed
GH-44770: [Java] Update minor protobuf version to avoid CVE-2024-7254 (#44775)
### Rationale for this change There seems to be a CVE affecting our current dependency: GHSA-735f-pc8j-v9w8 ### What changes are included in this PR? Update to latest minor which solves the issue. ### Are these changes tested? Via CI ### Are there any user-facing changes? No * GitHub Issue: #44770 Authored-by: Raúl Cumplido <[email protected]> Signed-off-by: David Li <[email protected]>
1 parent 5da6eb9 commit c882817

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

pom.xml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -98,7 +98,7 @@ under the License.
9898
<dep.guava-bom.version>33.3.1-jre</dep.guava-bom.version>
9999
<dep.netty-bom.version>4.1.114.Final</dep.netty-bom.version>
100100
<dep.grpc-bom.version>1.65.0</dep.grpc-bom.version>
101-
<dep.protobuf-bom.version>3.25.4</dep.protobuf-bom.version>
101+
<dep.protobuf-bom.version>3.25.5</dep.protobuf-bom.version>
102102
<dep.jackson-bom.version>2.18.1</dep.jackson-bom.version>
103103
<dep.hadoop.version>3.4.1</dep.hadoop.version>
104104
<dep.fbs.version>24.3.25</dep.fbs.version>

0 commit comments

Comments
 (0)