Skip to content

[Snyk-dev] Security upgrade org.apache.camel.quarkus:camel-quarkus-cassandraql from 3.23.0-SNAPSHOT to 3.26.0 #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk-dev] Security upgrade org.apache.camel.quarkus:camel-quarkus-cassandraql from 3.23.0-SNAPSHOT to 3.26.0 #6

wants to merge 1 commit into from

Conversation

@snyk-tim
Copy link
Owner

@snyk-tim snyk-tim commented Sep 20, 2025

snyk-top-banner

Snyk has created this PR to fix 23 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

  • poms/bom/pom.xml

Vulnerabilities that will be fixed with an upgrade:

Issue Score Upgrade
medium severity Information Exposure
SNYK-JAVA-ORGSLF4J-12060275		   694   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
Mature
critical severity Directory Traversal
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238608		   674   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
high severity Denial of Service (DoS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-13270217		   649   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
high severity Directory Traversal
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238609		   589   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
high severity Buffer Overflow
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238611		   579   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-13283910		   559   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-13283911		   559   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Arbitrary File Read
SNYK-JAVA-ORGSLF4J-12238606		   509   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Improper Certificate Validation
SNYK-JAVA-IONETTY-1042268		   505   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Division by zero
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238610		   489   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Division by zero
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238618		   489   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12009535		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12010004		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068051		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068052		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068053		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068054		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068055		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068056		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068057		   484   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Arbitrary File Upload
SNYK-JAVA-COMFASTERXMLJACKSONCORE-12246954		   479   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Arbitrary File Upload
SNYK-JAVA-ORGSLF4J-12238607		   479   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-13568387		   469   org.apache.camel.quarkus:camel-quarkus-cassandraql:
3.23.0-SNAPSHOT -> 3.26.0
No Known Exploit

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Scripting (XSS)
🦉 Directory Traversal
🦉 Regular Expression Denial of Service (ReDoS)
🦉 More lessons are available in Snyk Learn

@snyk-bot
fix: poms/bom/pom.xml to reduce vulnerabilities
d4a1b23 
The following vulnerabilities are fixed with an upgrade:
- https://dev.snyk.io/vuln/SNYK-JAVA-ORGSLF4J-12060275
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238608
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-13270217
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238609
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238611
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-13283910
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-13283911
- https://dev.snyk.io/vuln/SNYK-JAVA-ORGSLF4J-12238606
- https://dev.snyk.io/vuln/SNYK-JAVA-IONETTY-1042268
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238610
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12238618
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12009535
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12010004
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068051
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068052
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068053
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068054
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068055
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068056
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12068057
- https://dev.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-12246954
- https://dev.snyk.io/vuln/SNYK-JAVA-ORGSLF4J-12238607
- https://dev.snyk.io/vuln/SNYK-JAVA-IONETTY-13568387
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@snyk-tim @snyk-bot