Changelog for for Solace Sink Connector for Confluent Platform¶
Version 2.1.15¶
- CC-30382: Bump
com.google.code.gson:gsonto version 2.9.0 to resolve CVE-2022-42004 - CC-30377: Bump
org.bitbucket.b_c:jose4jto version 0.9.4 to resolve CVE-2023-51775 - CC-30378: Bump
org.apache.commons:commons-compressto version 1.26.1 to resolve CVE-2024-26308
Version 2.1.14¶
- CC-29192: Bump
com.google.protobuf:protobuf-javato version 3.25.5 to resolve CVE-2024-7254
Version 2.1.13¶
- CVE-2023-35116 : Updating version of jackson databind to 2.16.0
Version 2.1.12¶
- Fix CVE-2023-51775 : update jose4j version
Version 2.1.11¶
No changes
Version 2.1.10¶
- CC-25336: CVE Fix commons-compress
Version 2.1.9¶
No changes
Version 2.1.8¶
- CC-22838: Updated Apache Avro to resolve CVE
Version 2.1.7¶
- ESC-581: Updated protobuf dependency to 3.21.7
Version 2.1.6¶
- CC-21163: Updated dependency
com.google.guava_guavato 32.1.1-jre to resolve CVE - CC-20346: Updated dependency
jackson-coreto 2.15.2 to resolve CVE
Version 2.1.5¶
- CC-20688: Fixed a bug which threw a NoSuchMethodError with ConfluentLicenseManager while starting the connector with Confluent Platform by reintroducing protobuf dependency
Version 2.1.4¶
No changes
Version 2.1.3¶
- CCMSG-2279: Marked SnakeYAML and
protobuf-javaas test-scoped dependency to resolve CVE - CCMSG-2279: Updated
jackson-databindto 2.14.0 to resolve CVE
Version 2.1.2¶
No changes
Version 2.1.1¶
No changes
Version 2.1.0¶
- Added handling for forwarding JMS specific headers
- CVE: Upgraded
connect-commons-pluginsfrom 0.8.10 to 0.8.13 - CCMSG-1718: Updated common plugins parent to resolve
jackson-databindCVE - MINOR: Removed accidental commit of explicit jackson-core dependency
- CCMSG-1632: Updated
protobuf-javato 3.19.4 to address CVE