Hello dear Arrow user members. I am writting to you due to this reported flatbuffers vulnerability:
https://github.com/advisories/GHSA-3jch-9qgp-4844 It seems there is not fix up yo now. I wonder if this is affecting apache arrow somehow.. i can read the following: https://arrow.apache.org/faq/ The Arrow file format does use Flatbuffers under the hood to serialize schemas and other metadata needed to implement the Arrow binary IPC protocol, but the Arrow data format uses its own representation for optimal access and computation. I wonder if someone has analysed this vulnerability for apache arrow. Thank you very much and best regards Roberto.
