aswinshakil opened a new pull request #3951:
URL: https://github.com/apache/hadoop/pull/3951
<!--
Thanks for sending a pull request!
1. If this is your first time, please read our contributor guidelines:
https://cwiki.apache.org/confluence/display/HADOOP/How+To+Contribute
2. Make sure your PR title starts with JIRA issue id, e.g.,
'HADOOP-17799. Your PR title ...'.
-->
### Description of PR
The current aliyun-sdk-oss 3.13.0 is affected by
[CVE-2021-33813](https://github.com/advisories/GHSA-2363-cqg2-863c) due to jdom
2.0.6. aliyun-sdk-oss version
[3.13.1](https://github.com/aliyun/aliyun-oss-java-sdk/releases/tag/3.13.1) has
fixed it.
### How was this patch tested?
Confirmed that it has been fixed in v3.13.1 with the following
[patch](https://github.com/aliyun/aliyun-oss-java-sdk/pull/381)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
