New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency com.thoughtworks.xstream:xstream to v1.4.20 #8

Open

dev-mend-for-github-com wants to merge 1 commit into main from whitesource-remediate/com.thoughtworks.xstream-xstream-1.x

Contributor

dev-mend-for-github-com bot commented Dec 15, 2024 •

edited

Loading

This PR contains the following updates:

Package	Type	Update	Change
com.thoughtworks.xstream:xstream (source)	compile	patch	`1.4.5` -> `1.4.20`

By merging this PR, the issue #2 will be automatically resolved and closed:

Severity	CVSS Score	CVE
High	8.5	CVE-2021-39139
High	8.5	CVE-2021-39141
High	8.5	CVE-2021-39145
High	8.5	CVE-2021-39146
High	8.5	CVE-2021-39147
High	8.5	CVE-2021-39148
High	8.5	CVE-2021-39149
High	8.5	CVE-2021-39150
High	8.5	CVE-2021-39151
High	8.5	CVE-2021-39152
High	8.5	CVE-2021-39153
High	8.5	CVE-2021-39154
High	8.2	CVE-2022-41966
High	7.7	CVE-2020-26258
High	7.5	CVE-2021-21341
High	7.5	CVE-2021-43859
Medium	6.8	CVE-2020-26259
Medium	6.5	CVE-2021-39140
Medium	6.5	CVE-2022-40151
Medium	6.1	CVE-2021-21346
Medium	6.1	CVE-2021-21347
Medium	6.1	CVE-2021-21349
Medium	5.8	CVE-2021-21345
Medium	5.4	CVE-2021-21351
Medium	5.3	CVE-2016-3674
Medium	5.3	CVE-2017-7957
Medium	5.3	CVE-2021-21342
Medium	5.3	CVE-2021-21343
Medium	5.3	CVE-2021-21348
Medium	5.3	CVE-2021-21350

If you want to rebase/retry this PR, check this box


          Update dependency com.thoughtworks.xstream:xstream to v1.4.20

500ad6c

dev-mend-for-github-com bot added the security fix label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels