Batch Importer (Bib/Acq)
(UXPROD-47)
|
|
| Status: | Closed |
| Project: | liquibase-util |
| Components: | None |
| Affects versions: | 1.5.1 |
| Fix versions: | 1.5.2 | Parent: | Batch Importer (Bib/Acq) |
| Type: | Bug | Priority: | TBD |
| Reporter: | Julian Ladisch | Assignee: | Unassigned |
| Resolution: | Done | Votes: | 0 |
| Labels: | data-import, epam-folijet, security | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Issue links: |
|
||||||||
| Sprint: | |||||||||
| Development Team: | Folijet | ||||||||
| Release: | Nolana (R3 2022) | ||||||||
| Epic Link: | Batch Importer (Bib/Acq) | ||||||||
| RCA Group: | Related dependency upgrade | ||||||||
| Description |
|
Upgrade snakeyaml from 1.31 to 1.33 fixing Denial of Service attacks (DOS) caused by Stack-based Buffer Overflow: https://nvd.nist.gov/vuln/detail/CVE-2022-38752 |