CGA-j6p8-pcc9-34jq

Published

Last updated

https://images.chainguard.dev/security/CGA-j6p8-pcc9-34jq

Package

druid

RepositoryWolfi

Latest Update

Pending upstream fix

Aliases

CVE-2023-1436
GHSA-q6g2-g7f3-rr83

Severity

7.5

High

CVSS CVSS_V3

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1436
https://github.com/advisories/GHSA-q6g2-g7f3-rr83

Updates

Status

Pending upstream fix

Impact

com.netflix.astyanax:astyanax needs to be replaced with com.datastax.oss:java-driver-core in extensions-contrib/cassandra-storage by upstream maintainers

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CGA-j6p8-pcc9-34jq

Severity

References

Updates

Product

Solutions

Customers

Resources

Company