[
https://issues.apache.org/jira/browse/HADOOP-17924?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17417993#comment-17417993
]
Akira Ajisaka commented on HADOOP-17924:
----------------------------------------
I suppose it is an issue of the build environment, not of Hadoop source code
itself.
> Upgrade OpenSSL to 1.1.1l for vulnerability fix
> -----------------------------------------------
>
> Key: HADOOP-17924
> URL: https://issues.apache.org/jira/browse/HADOOP-17924
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Rajshree Mishra
> Priority: Major
>
> A vulnerability scan reported the following CVEs in openSSL 1.1.1k in Hadoop:
> CVE-2021-3711
> CVE-2021-3712
> Affects jars :
> libssl.so.1.1
> libcrypto.so.1.1
> libcrypto.a
> libssl.a
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
