Maven/org.xerial.snappy:snappy-java — 4 CVEs

HIGH7.5CVE-2023-43642snappy-java's missing upper bound check on chunk length can lead to Denial of Service (DoS) impact

from 0, < 1.1.10.4

HIGH7.5CVE-2023-34455snappy-java's unchecked chunk length leads to DoS

from 0, < 1.1.10.1

MEDIUM5.9CVE-2023-34454snappy-java's Integer Overflow vulnerability in compress leads to DoS

from 0, < 1.1.10.1

MEDIUM5.9snappy-java's Integer Overflow vulnerability in shuffle leads to DoS

from 0, < 1.1.10.1

pkg:Maven/org.xerial.snappy:snappy-java