[
https://issues.apache.org/jira/browse/HADOOP-15993?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17011515#comment-17011515
]
Hudson commented on HADOOP-15993:
---------------------------------
SUCCESS: Integrated in Jenkins build Hadoop-trunk-Commit #17838 (See
[https://builds.apache.org/job/Hadoop-trunk-Commit/17838/])
HADOOP-15993. Upgrade Kafka to 2.4.0 in hadoop-kafka module. (#1796) (tasanuma:
rev a40dc9ee315222713ef6fce5c14a91a2fcd7a245)
* (edit) hadoop-project/pom.xml
* (edit) LICENSE-binary
* (add) licenses-binary/LICENSE-zstd-jni.txt
> Upgrade Kafka version in hadoop-kafka module
> --------------------------------------------
>
> Key: HADOOP-15993
> URL: https://issues.apache.org/jira/browse/HADOOP-15993
> Project: Hadoop Common
> Issue Type: Improvement
> Components: build, security
> Reporter: Akira Ajisaka
> Assignee: Akira Ajisaka
> Priority: Major
> Fix For: 3.3.0
>
>
> Now the version is 0.8.2.1 and it has net.jpountz.lz4:lz4:1.2.0 dependency,
> which is vulnerable.
> (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4611)
> Let's upgrade.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
