bmscomp opened a new pull request, #14450: URL: https://github.com/apache/kafka/pull/14450
The version 1.1.10.4 contains a Fix of [CVE-2023-43642](https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv) and As mentioned on the release notes of the library https://github.com/xerial/snappy-java/releases/tag/v1.1.10.4 Fixed SnappyInputStream so as not to allocate too large memory when decompressing data with an extremely large chunk size and much dependencies updates ### Committer Checklist (excluded from commit message) - [x] Verify design and implementation - [ ] Verify test coverage and CI build status - [ ] Verify documentation (including upgrade notes) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: jira-unsubscr...@kafka.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
