3.2.4 Fix vulnerabilities CVE-2025-25193 and CVE-2025-24970 in dependencies

github-actions released this 12 Feb 18:08

· 1 commit to main since this release

1cf1798

This release fixes the following vulnerabilities in dependencies:

io.netty:netty-common:jar:4.1.115.Final: CVE-2025-25193
io.netty:netty-handler:jar:4.1.115.Final: CVE-2025-24970

Security

#193: Fixed CVE-2025-25193 in io.netty:netty-common:jar:4.1.115.Final
#192: Fixed CVE-2025-24970 in io.netty:netty-handler:jar:4.1.115.Final

Dependency Updates

Compile Dependency Updates

Updated com.exasol:virtual-schema-common-document:11.0.1 to 11.0.2
Updated software.amazon.awssdk:dynamodb:2.29.16 to 2.30.18

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:7.1.1 to 7.1.3
Updated com.exasol:udf-debugging-java:0.6.13 to 0.6.14
Updated com.exasol:virtual-schema-common-document:11.0.1 to 11.0.2
Updated nl.jqno.equalsverifier:equalsverifier:3.17.3 to 3.19
Updated org.junit.jupiter:junit-jupiter-params:5.11.3 to 5.11.4
Updated org.mockito:mockito-junit-jupiter:5.14.2 to 5.15.2
Updated org.testcontainers:junit-jupiter:1.20.3 to 1.20.4

Plugin Dependency Updates

Updated com.exasol:project-keeper-maven-plugin:4.4.0 to 4.5.0
Updated org.apache.maven.plugins:maven-dependency-plugin:3.8.0 to 3.8.1
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.5.1 to 3.5.2
Updated org.apache.maven.plugins:maven-site-plugin:3.9.1 to 3.21.0
Updated org.apache.maven.plugins:maven-surefire-plugin:3.5.1 to 3.5.2
Updated org.codehaus.mojo:versions-maven-plugin:2.17.1 to 2.18.0
Updated org.sonarsource.scanner.maven:sonar-maven-plugin:4.0.0.4121 to 5.0.0.4389

Assets 6