Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Scan Information (show all):

dependency-check version: 7.0.0
Report Generated On: Mon, 11 Jul 2022 09:32:48 +0200
Dependencies Scanned: 26 (3 unique)
Vulnerable Dependencies: 0
Vulnerabilities Found: 0
Vulnerabilities Suppressed: 0
...
NVD CVE Checked: 2022-07-11T09:27:50
NVD CVE Modified: 2022-07-11T07:00:01
VersionCheckOn: 2022-07-10T15:45:15

Summary

Display: Showing Vulnerable Dependencies (click to show all)

Dependency	Vulnerability IDs	Package	Confidence	Evidence Count
netty-common-4.1.78.Final.jar (shaded: org.jctools:jctools-core:3.1.0)		pkg:maven/org.jctools/jctools-core@3.1.0		9
netty-tcnative-classes-2.0.53.Final.jar	cpe:2.3:a:openssl:openssl:2.0.53:::::::*	pkg:maven/io.netty/netty-tcnative-classes@2.0.53.Final	Low	36
netty-transport-4.1.78.Final.jar	cpe:2.3:a:netty:netty:4.1.78:::::::*	pkg:maven/io.netty/netty-transport@4.1.78.Final	Highest	32

Dependencies

netty-common-4.1.78.Final.jar (shaded: org.jctools:jctools-core:3.1.0)

Description:

Java Concurrency Tools Core Library

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/frederic/.m2/repository/io/netty/netty-common/4.1.78.Final/netty-common-4.1.78.Final.jar/META-INF/maven/org.jctools/jctools-core/pom.xml
MD5: 08e7326c64d7fd6ae4ea32e7eb4e5b79
SHA1: 9deceaba814dea198202b04fe0eec0d2dbf69ea9
SHA256:acaf1b4c366f6794a734288a2c003f16af90a9c479cf4d7daade689764e4fb47
Referenced In Project/Scope:Waarp Digest:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	pom	artifactid	jctools-core	Low
Vendor	pom	groupid	org.jctools	Highest
Vendor	pom	name	Java Concurrency Tools Core Library	High
Vendor	pom	url	JCTools	Highest
Product	pom	artifactid	jctools-core	Highest
Product	pom	groupid	org.jctools	Highest
Product	pom	name	Java Concurrency Tools Core Library	High
Product	pom	url	JCTools	High
Version	pom	version	3.1.0	Highest

Identifiers

pkg:maven/org.jctools/jctools-core@3.1.0 (Confidence:High)

netty-tcnative-classes-2.0.53.Final.jar

Description:

    A Mavenized fork of Tomcat Native which incorporates various patches. This artifact is dynamically linked
    to OpenSSL and Apache APR.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-classes/2.0.53.Final/netty-tcnative-classes-2.0.53.Final.jar
MD5: 2e30cfe846ce7c86a4a15aa0b5d6c65d
SHA1: eee53d9a6e6bd582752d7a5e287c7888679b9f98
SHA256:9990404beb0b70d97d2bd90a95ef755cea6436ebe0cb7b7cd5c913b994c57aab
Referenced In Project/Scope:Waarp Digest:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	netty-tcnative-classes	High
Vendor	jar	package name	io	Highest
Vendor	jar	package name	netty	Highest
Vendor	jar	package name	tcnative	Highest
Vendor	Manifest	automatic-module-name	io.netty.tcnative.classes.openssl	Medium
Vendor	Manifest	build-jdk-spec	1.8	Low
Vendor	Manifest	bundle-docurl	https://netty.io/	Low
Vendor	Manifest	bundle-symbolicname	io.netty.tcnative-classes	Medium
Vendor	Manifest	implementation-url	https://github.com/netty/netty-tcnative/netty-tcnative-classes/	Low
Vendor	Manifest	Implementation-Vendor	The Netty Project	High
Vendor	Manifest	Implementation-Vendor-Id	io.netty	Medium
Vendor	Manifest	require-capability	osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.6))"	Low
Vendor	pom	artifactid	netty-tcnative-classes	Highest
Vendor	pom	artifactid	netty-tcnative-classes	Low
Vendor	pom	groupid	io.netty	Highest
Vendor	pom	name	Netty/TomcatNative [OpenSSL - Classes]	High
Vendor	pom	parent-artifactid	netty-tcnative-parent	Low
Product	file	name	netty-tcnative-classes	High
Product	jar	package name	io	Highest
Product	jar	package name	netty	Highest
Product	jar	package name	tcnative	Highest
Product	Manifest	automatic-module-name	io.netty.tcnative.classes.openssl	Medium
Product	Manifest	build-jdk-spec	1.8	Low
Product	Manifest	bundle-docurl	https://netty.io/	Low
Product	Manifest	Bundle-Name	Netty/TomcatNative [OpenSSL - Classes]	Medium
Product	Manifest	bundle-symbolicname	io.netty.tcnative-classes	Medium
Product	Manifest	Implementation-Title	Netty/TomcatNative [OpenSSL - Classes]	High
Product	Manifest	implementation-url	https://github.com/netty/netty-tcnative/netty-tcnative-classes/	Low
Product	Manifest	require-capability	osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.6))"	Low
Product	pom	artifactid	netty-tcnative-classes	Highest
Product	pom	groupid	io.netty	Highest
Product	pom	name	Netty/TomcatNative [OpenSSL - Classes]	High
Product	pom	parent-artifactid	netty-tcnative-parent	Medium
Version	Manifest	Bundle-Version	2.0.53.Final	High
Version	Manifest	Implementation-Version	2.0.53.Final	High
Version	pom	version	2.0.53.Final	Highest

Related Dependencies

netty-tcnative-boringssl-static-2.0.53.Final-linux-aarch_64.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final-linux-aarch_64.jar
- MD5: 1e612c88ff067a19916389b90bde8564
- SHA1: f9d912942b408299cac1faec2190684e8ab5764d
- SHA256: ce3d12e3ae2ad0b9225df347b55715b0ad24342d0195bb238f5e3f60b3f6b868
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final
netty-tcnative-boringssl-static-2.0.53.Final-linux-x86_64.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final-linux-x86_64.jar
- MD5: f7f570d4ae404e0b4b5c9db4d4a579da
- SHA1: 0549dde47c2bf06ee2a2b713f946cad8b0f929b8
- SHA256: 83e3357da5567a93cb5ff6cb807d70573359d7ef9676fa8169405121bae05723
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final
netty-tcnative-boringssl-static-2.0.53.Final-osx-aarch_64.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final-osx-aarch_64.jar
- MD5: e15f14f786af16fcccfd2d2d6f53b71a
- SHA1: a31efd9a465e48bd6aa451623d739e918f6afc55
- SHA256: 9d9cf706e89b81e07e9983a06b8ff5348a658a89752ec6f426925cc645e54b54
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final
netty-tcnative-boringssl-static-2.0.53.Final-osx-x86_64.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final-osx-x86_64.jar
- MD5: 2c5b7420929f47c4a91ad059cc64f8c9
- SHA1: 5071da9ee1953424bbc14d9ef31e9c92fd14810a
- SHA256: 51b43e8e178e94de9ec27017e03173dfb19bd1aaf15677a90347188cf60e799b
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final
netty-tcnative-boringssl-static-2.0.53.Final-windows-x86_64.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final-windows-x86_64.jar
- MD5: a87977ec08c1aaf4e87b4c65681ae3a8
- SHA1: f2d1a8fc1d8f087bea4a6d5c0e9e7d01036ead7b
- SHA256: e348fcfab697ffc30bacc083e9393e5b6bd398029acac1a570e53267f89804a3
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final
netty-tcnative-boringssl-static-2.0.53.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-tcnative-boringssl-static/2.0.53.Final/netty-tcnative-boringssl-static-2.0.53.Final.jar
- MD5: 4178ff9b92b4e5caa56337f870e19e56
- SHA1: 4d24ee8d1b73295a2759bae5262eefe3f281b132
- SHA256: 0d8d16adadb19e065a5ac05738f0c2503c685cf3edafba14f7a1c246aafa09ef
- pkg:maven/io.netty/netty-tcnative-boringssl-static@2.0.53.Final

Identifiers

pkg:maven/io.netty/netty-tcnative-classes@2.0.53.Final (Confidence:High)
cpe:2.3:a:openssl:openssl:2.0.53:*:*:*:*:*:*:* (Confidence:Low)

netty-transport-4.1.78.Final.jar

Description:

Netty is an asynchronous event-driven network application framework for    rapid development of maintainable high performance protocol servers and    clients.

License:

https://www.apache.org/licenses/LICENSE-2.0

File Path: /home/frederic/.m2/repository/io/netty/netty-transport/4.1.78.Final/netty-transport-4.1.78.Final.jar
MD5: c73f2c40376739f857be3da776ca7b40
SHA1: b1639d431e43622d6cbfdd45c30d3fb810fa9101
SHA256:153ee99931f6d6ba8a6d66d74cbb73371bd46c546b0707d7d37af1264a3deaf2
Referenced In Project/Scope:Waarp Digest:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	netty-transport	High
Vendor	jar	package name	io	Highest
Vendor	jar	package name	netty	Highest
Vendor	Manifest	automatic-module-name	io.netty.transport	Medium
Vendor	Manifest	bundle-docurl	https://netty.io/	Low
Vendor	Manifest	bundle-symbolicname	io.netty.transport	Medium
Vendor	Manifest	implementation-url	https://netty.io/netty-transport/	Low
Vendor	Manifest	Implementation-Vendor	The Netty Project	High
Vendor	Manifest	Implementation-Vendor-Id	io.netty	Medium
Vendor	Manifest	require-capability	osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.6))"	Low
Vendor	pom	artifactid	netty-transport	Highest
Vendor	pom	artifactid	netty-transport	Low
Vendor	pom	groupid	io.netty	Highest
Vendor	pom	name	Netty/Transport	High
Vendor	pom	parent-artifactid	netty-parent	Low
Product	file	name	netty-transport	High
Product	jar	package name	io	Highest
Product	jar	package name	netty	Highest
Product	Manifest	automatic-module-name	io.netty.transport	Medium
Product	Manifest	bundle-docurl	https://netty.io/	Low
Product	Manifest	Bundle-Name	Netty/Transport	Medium
Product	Manifest	bundle-symbolicname	io.netty.transport	Medium
Product	Manifest	Implementation-Title	Netty/Transport	High
Product	Manifest	implementation-url	https://netty.io/netty-transport/	Low
Product	Manifest	require-capability	osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.6))"	Low
Product	pom	artifactid	netty-transport	Highest
Product	pom	groupid	io.netty	Highest
Product	pom	name	Netty/Transport	High
Product	pom	parent-artifactid	netty-parent	Medium
Version	Manifest	Bundle-Version	4.1.78.Final	High
Version	Manifest	Implementation-Version	4.1.78.Final	High
Version	pom	version	4.1.78.Final	Highest

Related Dependencies

netty-buffer-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-buffer/4.1.78.Final/netty-buffer-4.1.78.Final.jar
- MD5: e4c4260e78b22b09bcf9349d3cc1afcd
- SHA1: 6c0c2d805a2c8ea30223677d8219235f9ec14c38
- SHA256: 7730bbdb434b91b45474ae3c534948e42d1f1639bdab06a807d58019f56ca149
- pkg:maven/io.netty/netty-buffer@4.1.78.Final
netty-codec-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-codec/4.1.78.Final/netty-codec-4.1.78.Final.jar
- MD5: f2ed4f0c88d40579a8d9cdc7c95c2731
- SHA1: e8486c8923fc0914df4562a8e0923462e885f88a
- SHA256: e2c6491c204834906f46611c1570f703670b8a5c829514715d3f633e03978e1d
- pkg:maven/io.netty/netty-codec@4.1.78.Final
netty-codec-dns-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-codec-dns/4.1.78.Final/netty-codec-dns-4.1.78.Final.jar
- MD5: 25e57cf6cbe1ef213f57203779cd6879
- SHA1: 6b51ce00cfe34adbe93171088f1c7fbd2a517308
- SHA256: 026674066f8f934143caa15818e69f5026d16dfc95253f1b784786e37be17fdc
- pkg:maven/io.netty/netty-codec-dns@4.1.78.Final
netty-codec-http-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-codec-http/4.1.78.Final/netty-codec-http-4.1.78.Final.jar
- MD5: 1d67820bdd979065b6d9e64abd030820
- SHA1: b636591e973418479f2d08e881b12be61845aa6f
- SHA256: 1b57c80b67fe5777271acba052053fa679edb3600abf8610526306c88d04cb06
- pkg:maven/io.netty/netty-codec-http@4.1.78.Final
netty-codec-socks-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-codec-socks/4.1.78.Final/netty-codec-socks-4.1.78.Final.jar
- MD5: 76d7ed69520832c31745ffdefe28a843
- SHA1: 0a8b9c0e9819e4e2c6c938e8f079683a65d85faf
- SHA256: 61fbef3afc0331fc3a57100da4aece4cd58477c6c8112e8dad9be509066c9d8c
- pkg:maven/io.netty/netty-codec-socks@4.1.78.Final
netty-common-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-common/4.1.78.Final/netty-common-4.1.78.Final.jar
- MD5: 62255a89e2c08fca02b0172817683369
- SHA1: d6f560098050f88ba11750aa856edd955e4a7707
- SHA256: 84fe17e97335492a24d85e2da9f9bea996ab2c3c4d0fcfc1d997f9613393d917
- pkg:maven/io.netty/netty-common@4.1.78.Final
netty-handler-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-handler/4.1.78.Final/netty-handler-4.1.78.Final.jar
- MD5: 8e8d7003d377221fc31423240e39f5cc
- SHA1: 7e902b6018378bb700ec9364b1d0fba6eefd99fd
- SHA256: 04f40a6159418397348d56a9c45343d4bbbfa1711d864a10a131d4373484f131
- pkg:maven/io.netty/netty-handler@4.1.78.Final
netty-handler-proxy-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-handler-proxy/4.1.78.Final/netty-handler-proxy-4.1.78.Final.jar
- MD5: a3b708ee421c61af1202b0c696923891
- SHA1: f9e5ad080d1d1a9a82ba598814e6f5a229db4594
- SHA256: 9aab95e081bc3bbec6e31d244a5ee9faa2819a9bdbcd0e30cfff19803755887f
- pkg:maven/io.netty/netty-handler-proxy@4.1.78.Final
netty-resolver-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-resolver/4.1.78.Final/netty-resolver-4.1.78.Final.jar
- MD5: d6b9e2b05a51a99e97ddeac47dcc4913
- SHA1: 691170d70a979757d50f60e16121ced5f411a9b8
- SHA256: 4f592ceb0f5f72f1908a3d1c842ee583ab46fdb3133bf2bec3676fbe6a680bce
- pkg:maven/io.netty/netty-resolver@4.1.78.Final
netty-resolver-dns-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-resolver-dns/4.1.78.Final/netty-resolver-dns-4.1.78.Final.jar
- MD5: ae8c8b8a9c5b3ce367a1d7e2757a8e6a
- SHA1: 84fc82d8ff839d85c81979a5dc2525857b9a8837
- SHA256: 70c6b2672103d67a0aad45b7f87001602772c064daee2a81a0c53f26a9e86606
- pkg:maven/io.netty/netty-resolver-dns@4.1.78.Final
netty-resolver-dns-classes-macos-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-resolver-dns-classes-macos/4.1.78.Final/netty-resolver-dns-classes-macos-4.1.78.Final.jar
- MD5: 99cd9b1d4c41ece6474d1e07c12d7263
- SHA1: 8962e358cab20ed9376c86db09eaea8cff2ee4b0
- SHA256: 95c7b885c2c99a186c03523e7e15cb635f75c378dbdb9f284d5fa5b9fb85dc23
- pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.78.Final
netty-resolver-dns-native-macos-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-resolver-dns-native-macos/4.1.78.Final/netty-resolver-dns-native-macos-4.1.78.Final.jar
- MD5: 685cc28c5ba3fb91cdb02f69044cb8b0
- SHA1: dac256b04626552271fef97e586006ded2701d41
- SHA256: bc5c9d715e0934d758637557fa991571f56790c7ce2754a5cc64c26534229846
- pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.78.Final
netty-transport-classes-epoll-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-transport-classes-epoll/4.1.78.Final/netty-transport-classes-epoll-4.1.78.Final.jar
- MD5: 9d924d5f176bdd6779946e83cdcae116
- SHA1: 2151893a521c6362858071053fddbd270c1f20bd
- SHA256: ddb9f8836810e1df196ede6ebfe2f86839160fc5021c386086e1bb659bcddd00
- pkg:maven/io.netty/netty-transport-classes-epoll@4.1.78.Final
netty-transport-classes-kqueue-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-transport-classes-kqueue/4.1.78.Final/netty-transport-classes-kqueue-4.1.78.Final.jar
- MD5: 40d7e2a6b3985a56c160c1d3c62805b4
- SHA1: 5536de8030ef84507504b352e54c298b9db361c9
- SHA256: 2c093e36268640ff6034328e4774a04069a1c2410200d76fb814aa74b7dc393d
- pkg:maven/io.netty/netty-transport-classes-kqueue@4.1.78.Final
netty-transport-native-epoll-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-transport-native-epoll/4.1.78.Final/netty-transport-native-epoll-4.1.78.Final.jar
- MD5: 1fb7ce0e94dadce03c869eccdb72117b
- SHA1: dcb28ed02abf7bf02aa8dc9bf05f58bedcb12e9a
- SHA256: 0da0f9d60b7ee800bb3f2f8d66ac7f60ce661a2664bbdb894d1349637d73908a
- pkg:maven/io.netty/netty-transport-native-epoll@4.1.78.Final
netty-transport-native-kqueue-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-transport-native-kqueue/4.1.78.Final/netty-transport-native-kqueue-4.1.78.Final.jar
- MD5: 005e79f5df1257b5d13ebb752e0819f8
- SHA1: 7a48e5f1cce660dd4fb5a32d9cf68d731f969555
- SHA256: 8f06a5af5f5c0564cba47fe65ae6e44675621732dadc7eff34d803f62e506aed
- pkg:maven/io.netty/netty-transport-native-kqueue@4.1.78.Final
netty-transport-native-unix-common-4.1.78.Final.jar
- File Path: /home/frederic/.m2/repository/io/netty/netty-transport-native-unix-common/4.1.78.Final/netty-transport-native-unix-common-4.1.78.Final.jar
- MD5: f17b917cb10e685ffbdfe0ebaa7a97e7
- SHA1: 62c64e182a11e31ad80e68a94f0b02b45344df23
- SHA256: 75555605c23592223b10b157409c00c9127205dd7bee093c1ac244fc71fdcc06
- pkg:maven/io.netty/netty-transport-native-unix-common@4.1.78.Final

Identifiers

pkg:maven/io.netty/netty-transport@4.1.78.Final (Confidence:High)
cpe:2.3:a:netty:netty:4.1.78:*:*:*:*:*:*:* (Confidence:Highest)

How to read the report | Suppressing false positives | Getting Help: github issues

Sponsor

Project: Waarp Digest

Waarp:WaarpDigest:3.6.2-jre8

Summary

Dependencies

netty-common-4.1.78.Final.jar (shaded: org.jctools:jctools-core:3.1.0)

Evidence

Identifiers

netty-tcnative-classes-2.0.53.Final.jar

Evidence

Related Dependencies

Identifiers

netty-transport-4.1.78.Final.jar

Evidence

Related Dependencies

Identifiers

How to read the report | Suppressing false positives | Getting Help: github issues Sponsor

Project: Waarp Digest

Waarp:WaarpDigest:3.6.2-jre8

Summary

Dependencies

netty-common-4.1.78.Final.jar (shaded: org.jctools:jctools-core:3.1.0)

Evidence

Identifiers

netty-tcnative-classes-2.0.53.Final.jar

Evidence

Related Dependencies

Identifiers

netty-transport-4.1.78.Final.jar

Evidence

Related Dependencies

Identifiers

How to read the report | Suppressing false positives | Getting Help: github issues

Sponsor