You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@kafka.apache.org by ma...@apache.org on 2024/03/18 09:28:13 UTC
(kafka) branch 3.6 updated (8aa39869aae -> 689c8e07068)
This is an automated email from the ASF dual-hosted git repository.
manikumar pushed a change to branch 3.6
in repository https://gitbox.apache.org/repos/asf/kafka.git
from 8aa39869aae KAFKA-16342: fix getOffsetByMaxTimestamp for compressed records (#15542)
new 361def54328 KAFKA-16322 upgrade jline from 3.22.0 to 3.25.1 (#15464)
new 689c8e07068 KAFKA-16210: Update jose4j to 0.9.4 (#15284)
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
LICENSE-binary | 4 ++--
gradle/dependencies.gradle | 4 ++--
2 files changed, 4 insertions(+), 4 deletions(-)
(kafka) 01/02: KAFKA-16322 upgrade jline from 3.22.0 to 3.25.1 (#15464)
Posted by ma...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
manikumar pushed a commit to branch 3.6
in repository https://gitbox.apache.org/repos/asf/kafka.git
commit 361def54328d0ea26036a19784607f17b13fd14b
Author: Johnny Hsu <44...@users.noreply.github.com>
AuthorDate: Wed Mar 6 19:39:34 2024 +0800
KAFKA-16322 upgrade jline from 3.22.0 to 3.25.1 (#15464)
An issue in the component "GroovyEngine.execute" of jline-groovy versions through 3.24.1 allows attackers to cause an OOM (OutofMemory) error. Please refer to https://devhub.checkmarx.com/cve-details/CVE-2023-50572 for more details
Reviewers: Chia-Ping Tsai <ch...@gmail.com>
---
LICENSE-binary | 2 +-
gradle/dependencies.gradle | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 6b49cfdad3e..96c175bc106 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -331,7 +331,7 @@ zstd-jni-1.5.5-1 see: licenses/zstd-jni-BSD-2-clause
---------------------------------------
BSD 3-Clause
-jline-3.22.0, see: licenses/jline-BSD-3-clause
+jline-3.25.1, see: licenses/jline-BSD-3-clause
jsr305-3.0.2, see: licenses/jsr305-BSD-3-clause
paranamer-2.8, see: licenses/paranamer-BSD-3-clause
diff --git a/gradle/dependencies.gradle b/gradle/dependencies.gradle
index 0479e3f86ee..6f738c3802a 100644
--- a/gradle/dependencies.gradle
+++ b/gradle/dependencies.gradle
@@ -92,7 +92,7 @@ versions += [
javassist: "3.29.2-GA",
jetty: "9.4.53.v20231009",
jersey: "2.39.1",
- jline: "3.22.0",
+ jline: "3.25.1",
jmh: "1.36",
hamcrest: "2.2",
scalaLogging: "3.9.4",
(kafka) 02/02: KAFKA-16210: Update jose4j to 0.9.4 (#15284)
Posted by ma...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
manikumar pushed a commit to branch 3.6
in repository https://gitbox.apache.org/repos/asf/kafka.git
commit 689c8e0706874e4e3af0652974885c176895b534
Author: Mike Lloyd <49...@users.noreply.github.com>
AuthorDate: Tue Jan 30 02:17:03 2024 -0800
KAFKA-16210: Update jose4j to 0.9.4 (#15284)
Co-authored-by: Mike Lloyd <mi...@teradata.com>
Reviewers: Divij Vaidya <di...@amazon.com>
---
LICENSE-binary | 2 +-
gradle/dependencies.gradle | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 96c175bc106..8e4300d556f 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -238,7 +238,7 @@ jetty-servlet-9.4.53.v20231009
jetty-servlets-9.4.53.v20231009
jetty-util-9.4.53.v20231009
jetty-util-ajax-9.4.53.v20231009
-jose4j-0.9.3
+jose4j-0.9.4
lz4-java-1.8.0
maven-artifact-3.8.8
metrics-core-4.1.12.1
diff --git a/gradle/dependencies.gradle b/gradle/dependencies.gradle
index 6f738c3802a..4f3bf1e8465 100644
--- a/gradle/dependencies.gradle
+++ b/gradle/dependencies.gradle
@@ -101,7 +101,7 @@ versions += [
jaxrs: "2.1.1",
jfreechart: "1.0.0",
jopt: "5.0.4",
- jose4j: "0.9.3",
+ jose4j: "0.9.4",
junit: "5.9.3",
jqwik: "1.7.4",
kafka_0100: "0.10.0.1",