CVE-2025-21604 Information

Description

LangChain4j-AIDeepin is a Retrieval enhancement generation (RAG) project. Prior to 3.5.0 LangChain4j-AIDeepin uses MD5 to hash files which may cause file upload conflicts. This issue is fixed in 3.5.0.

Reference

https://github.com/moyangzhan/langchain4j-aideepin/commit/3cf625c5044a151a8cbcbdf98e10b4b46b8a975a https://github.com/moyangzhan/langchain4j-aideepin/security/advisories/GHSA-cv5r-73vf-8x7v