[JPP-Devel] [openjump-gis/openjump] 7d97ab: fix dependabot alerts #13, #15

edeso via Jump-pilot-devel Tue, 27 Feb 2024 03:40:15 -0800

  Branch: refs/heads/main
  Home:   https://github.com/openjump-gis/openjump
  Commit: 7d97abf4da45f0bca77e5c4e9b0fabead96b36f8
      
https://github.com/openjump-gis/openjump/commit/7d97abf4da45f0bca77e5c4e9b0fabead96b36f8
  Author: edeso <[email protected]>
  Date:   2024-02-27 (Tue, 27 Feb 2024)


  Changed paths:
    M pom.xml

  Log Message:
  -----------
  fix dependabot alerts #13, #15

https://github.com/openjump-gis/openjump/security/dependabot/13
Allocation of Resources Without Limits or Throttling vulnerability in Apache 
Commons Compress. This issue affects Apache Commons Compress: from 1.21 before 
1.26.

https://github.com/openjump-gis/openjump/security/dependabot/15
SQL injection is possible when using the non-default connection property 
preferQueryMode=simple in combination with application code that has a 
vulnerable SQL that negates a parameter value.



To unsubscribe from these emails, change your notification settings at 
https://github.com/openjump-gis/openjump/settings/notifications


_______________________________________________
Jump-pilot-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/jump-pilot-devel

[JPP-Devel] [openjump-gis/openjump] 7d97ab: fix dependabot alerts #13, #15

Reply via email to