(hadoop) branch branch-3.4 updated: HADOOP-19456. Upgrade kafka to 3.9.0 to fix CVE-2024-31141. (#7416) Contributed by Palakur Eshwitha Sai.

[slfan1989]

This is an automated email from the ASF dual-hosted git repository.

slfan1989 pushed a commit to branch branch-3.4
in repository https://gitbox.apache.org/repos/asf/hadoop.git


The following commit(s) were added to refs/heads/branch-3.4 by this push:
     new 08cfb233fb0 HADOOP-19456. Upgrade kafka to 3.9.0 to fix 
CVE-2024-31141. (#7416) Contributed by Palakur Eshwitha Sai.
08cfb233fb0 is described below

commit 08cfb233fb03cd9db4719b610b18a281d3bb4d84
Author: Palakur Eshwitha Sai <saieshwitha...@gmail.com>
AuthorDate: Sat Feb 22 06:09:37 2025 +0530

    HADOOP-19456. Upgrade kafka to 3.9.0 to fix CVE-2024-31141. (#7416) 
Contributed by Palakur Eshwitha Sai.
    
    Signed-off-by: Shilun Fan <slfan1...@apache.org>
---
 LICENSE-binary                                                        | 4 ++--
 hadoop-project/pom.xml                                                | 2 +-
 .../src/main/java/org/apache/hadoop/metrics2/sink/KafkaSink.java      | 2 ++
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/LICENSE-binary b/LICENSE-binary
index 98b5a5c8e86..8dccd2e6dd4 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -317,7 +317,7 @@ org.apache.htrace:htrace-core:3.1.0-incubating
 org.apache.htrace:htrace-core4:4.1.0-incubating
 org.apache.httpcomponents:httpclient:4.5.13
 org.apache.httpcomponents:httpcore:4.4.13
-org.apache.kafka:kafka-clients:3.4.0
+org.apache.kafka:kafka-clients:3.9.0
 org.apache.kerby:kerb-admin:2.0.3
 org.apache.kerby:kerb-client:2.0.3
 org.apache.kerby:kerb-common:2.0.3
@@ -377,7 +377,7 @@ 
hadoop-common-project/hadoop-common/src/main/native/src/org/apache/hadoop/io/com
 
hadoop-hdfs-project/hadoop-hdfs-native-client/src/main/native/fuse-dfs/util/tree.h
 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-nodemanager/src/main/native/container-executor/impl/compat/{fstatat|openat|unlinkat}.h
 
-com.github.luben:zstd-jni:1.5.2-1
+com.github.luben:zstd-jni:1.5.6-4
 dnsjava:dnsjava:3.6.1
 org.codehaus.woodstox:stax2-api:4.2.1
 
diff --git a/hadoop-project/pom.xml b/hadoop-project/pom.xml
index 0aac4355c55..4e4742fb47a 100644
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@@ -50,7 +50,7 @@
     <!-- Version number for xerces used by JDiff -->
     <xerces.jdiff.version>2.12.2</xerces.jdiff.version>
 
-    <kafka.version>3.4.0</kafka.version>
+    <kafka.version>3.9.0</kafka.version>
 
     <commons-daemon.version>1.0.13</commons-daemon.version>
 
diff --git 
a/hadoop-tools/hadoop-kafka/src/main/java/org/apache/hadoop/metrics2/sink/KafkaSink.java
 
b/hadoop-tools/hadoop-kafka/src/main/java/org/apache/hadoop/metrics2/sink/KafkaSink.java
index 9cb6b93c4e0..4b77e75016d 100644
--- 
a/hadoop-tools/hadoop-kafka/src/main/java/org/apache/hadoop/metrics2/sink/KafkaSink.java
+++ 
b/hadoop-tools/hadoop-kafka/src/main/java/org/apache/hadoop/metrics2/sink/KafkaSink.java
@@ -111,6 +111,8 @@ public void init(SubsetConfiguration conf) {
       LOG.warn("Error getting Hostname, going to continue");
     }
 
+    System.setProperty("org.apache.kafka.automatic.config.providers", "none");
+
     try {
       // Create the producer object.
       producer = new KafkaProducer<Integer, byte[]>(props);


---------------------------------------------------------------------
To unsubscribe, e-mail: common-commits-unsubscr...@hadoop.apache.org
For additional commands, e-mail: common-commits-h...@hadoop.apache.org