Skip to content

Commit

Permalink
Upgrade protobuf-java to 3.19.6
Browse files Browse the repository at this point in the history 
Upgrade protobuf-java to 3.19.6 to remove presence of CVE-2022-3171, CVE-2022-3509, and CVE-2022-3510. Upgrade protoc-gen-grpc-java to 1.43.3 since it also depends on protobuf-java 3.19.6.

Closes #3945.

Fixes #3946

COPYBARA_INTEGRATE_REVIEW=#3946 from k-mack:protobuf-java-3.19.6 0039c56
PiperOrigin-RevId: 538825449
  • Loading branch information
@k-mack
k-mack authored and Error Prone Team committed Jun 8, 2023
1 parent 74155e8 commit 1e3f53d
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -43,8 +43,8 @@
<maven-javadoc-plugin.version>3.3.1</maven-javadoc-plugin.version>
<maven-source-plugin.version>3.2.1</maven-source-plugin.version>
<nexus-staging-maven-plugin.version>1.6.13</nexus-staging-maven-plugin.version>
<protobuf.version>3.19.2</protobuf.version>
<grpc.version>1.43.2</grpc.version>
<protobuf.version>3.19.6</protobuf.version>
<grpc.version>1.43.3</grpc.version>
<jspecify.version>0.2.0</jspecify.version>
<guice.version>5.1.0</guice.version>
</properties>
Expand Down

0 comments on commit 1e3f53d

Please sign in to comment.