VYPR

Maven package

com.squareup.okio/okio-jvm

pkg:maven/com.squareup.okio/okio-jvm

Vulnerabilities (1)

  • CVE-2023-3635Jul 12, 2023
    affected >= 2.0.0-RC1, < 3.4.0fixed 3.4.0

    GzipSource does not handle an exception that might be raised when parsing a malformed gzip buffer. This may lead to denial of service of the Okio client when handling a crafted GZIP archive, by using the GzipSource class.