From f6e2e6032b1fd385e85d2f0a9f391d50154bed12 Mon Sep 17 00:00:00 2001
From: namya28 <sehgalnamya@gmail.com>
Date: Thu, 28 Nov 2024 21:19:06 +0530
Subject: [PATCH] Upgrade the snappy version to 0.5

This upgrade eliminates the vulnerability present in the version 0.2 which fixes CVE-2024-36124.
---
 pom.xml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/pom.xml b/pom.xml
index fde9885f52e01..10e24784054ba 100644
--- a/pom.xml
+++ b/pom.xml
@@ -206,6 +206,12 @@
 
     <dependencyManagement>
         <dependencies>
+            <dependency>
+                <groupId>org.iq80.snappy</groupId>
+                <artifactId>snappy</artifactId>
+                <version>0.5</version>
+            </dependency>
+
             <dependency>
                 <groupId>io.netty</groupId>
                 <artifactId>netty-handler</artifactId>