lhotari commented on PR #21398: URL: https://github.com/apache/pulsar/pull/21398#issuecomment-1781430843
> Out of curiosity, because of the severity of [CVE-2023-44981](https://github.com/advisories/GHSA-7286-pgfv-vxvh), will this cherry picked to fix the recent release of 3.1.1? Or will 3.1.2 be expedited? @compuguy Unfortunately, this didn't make it to 3.1.1. . The release decisions are made on the dev mailing list. I have started this email thread: https://lists.apache.org/thread/czjtyxhfdbowptf34qs7r4o1qdpql5kh . I think it could justify expediting 3.1.2 release. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
