Описание
skylot jadx affected by Incorrect Behavior Order in vulnerable dependency
Impact
Vulnerable library protobuf-java 3.11.4 (CVE-2021-22569)
Patches
Dependency updated in jadx 1.4.3
References
According to the AquaSecurity report:
Also, Maven repository have links to this and other vulnerabilities from dependencies: https://mvnrepository.com/artifact/com.google.protobuf/protobuf-java/3.11.4
Пакеты
Наименование
io.github.skylot:jadx-core
maven
Затронутые версииВерсия исправления
<= 1.4.2
1.4.3
Дефекты
CWE-696
Дефекты
CWE-696