[Snyk] Security upgrade org.apache.hadoop:hadoop-client from 3.3.1 to 3.4.1 (!120) · Merge requests · Ali Benbrahim / fiware-draco · GitLab

Import User requested to merge snyk-fix-4d2805d8367b2580de235b2741c4f35d into master Oct 19, 2024

Snyk has created this PR to fix 14 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

nifi-ngsi-bundle/nifi-ngsi-processors/pom.xml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score	Upgrade
	Integer Overflow SNYK-JAVA-COMGOOGLEPROTOBUF-173761	654	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Stack-based Buffer Overflow SNYK-JAVA-COMGOOGLEPROTOBUF-8055227	649	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-DNSJAVA-7547404	649	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-DNSJAVA-7547405	649	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Uncontrolled Resource Consumption SNYK-JAVA-COMMONSIO-8161190	631	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Infinite loop SNYK-JAVA-ORGAPACHECOMMONS-6254296	619	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Denial of Service (DoS) SNYK-JAVA-COMGOOGLEPROTOBUF-2331703	589	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Denial of Service (DoS) SNYK-JAVA-COMGOOGLEPROTOBUF-3167772	589	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-COMNIMBUSDS-6247633	589	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Out-of-Bounds Write SNYK-JAVA-ORGAPACHECOMMONS-6475528	589	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Out-of-Bounds Write SNYK-JAVA-ORGAPACHECOMMONS-6475534	589	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Acceptance of Extraneous Untrusted Data With Trusted Data SNYK-JAVA-DNSJAVA-7547403	564	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Denial of Service (DoS) SNYK-JAVA-COMGOOGLEPROTOBUF-3040284	499	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGAPACHECOMMONS-6254297	429	org.apache.hadoop:hadoop-client: `3.3.1` -> `3.4.1` `No Known Exploit`

Important

Check the changes in this PR to ensure they won't cause issues with your project.
Max score is 1000. Note that the real score may have changed since the PR was raised.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report 📜 Customise PR templates 🛠️ Adjust project settings 📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS) 🦉 Allocation of Resources Without Limits or Throttling