Skip to content

There is a vulnerability in SnakeYAML 1.25,upgrade recommended #2000

New issue
New issue
Closed
#2003
Closed
There is a vulnerability in SnakeYAML 1.25,upgrade recommended#2000
#2003
Labels
dependenciesPull requests that update a dependency filegood first issueGood for newcomers
@QiAnXinCodeSafe

Description

@QiAnXinCodeSafe
QiAnXinCodeSafe
opened on Feb 1, 2021

Sentinel/sentinel-cluster/sentinel-cluster-server-envoy-rls/pom.xml

Line 68 in 1f4614c

<version>1.25</version>

CVE-2017-18640

Recommended upgrade version:1.26

Metadata

Metadata

Assignees

No one assigned

    Labels

    dependenciesPull requests that update a dependency filegood first issueGood for newcomers

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions