[MNG-7828] Bump guava from 31.1-jre to 32.0.1-jre

**[Bruno Volpato](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=brunocvcunha)** opened **[MNG-7828](https://issues.apache.org/jira/browse/MNG-7828?redirect=false)** and commented

Currently used version is in the range of CVE-2023-2976, which was fixed in 32.0.0.

 

Please check https://osv.dev/vulnerability/GHSA-7g45-4rm6-3mm3 for more information.


---

**Affects:** 3.9.x-candidate, 4.0.x-candidate

**Remote Links:**
- [GitHub Pull Request #1189
](https://github.com/apache/maven/pull/1189)
- [GitHub Pull Request #1191
](https://github.com/apache/maven/pull/1191)

**Backported to:** [4.0.0-alpha-8](https://github.com/apache/maven/milestone/7?closed=1), [3.9.4](https://github.com/apache/maven/milestone/9?closed=1)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[MNG-7828] Bump guava from 31.1-jre to 32.0.1-jre #9091

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[MNG-7828] Bump guava from 31.1-jre to 32.0.1-jre #9091

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions