[
https://issues.apache.org/jira/browse/HADOOP-18198?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17526810#comment-17526810
]
Ayush Saxena commented on HADOOP-18198:
---------------------------------------
{quote}see how you get on with a docker run.
{quote}
It worked for me I suppose, in the end it gave some gpg warning, which I am not
sure as of now how to fix, But it did built the artifacts after taking some 2-3
hours.
{noformat}
gpg: no ultimately trusted keys found
gpg: Signature made Sat 23 Apr 2022 09:36:21 AM UTC
gpg: using RSA key 45524C632EB61E289F069185D09AE71061AB564D
gpg: Good signature from "Ayush Saxena <[email protected]>" [unknown]
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 4552 4C63 2EB6 1E28 9F06 9185 D09A E710 61AB 564D
============================================================================
============================================================================
Hadoop Release Creator
============================================================================
============================================================================
Version to create : 3.3.3
Release Candidate Label:
Source Version : 3.3.3{noformat}
I suppose this marks it as complete.
> Release Hadoop 3.3.3: hadoop-3.3.2 with some fixes
> --------------------------------------------------
>
> Key: HADOOP-18198
> URL: https://issues.apache.org/jira/browse/HADOOP-18198
> Project: Hadoop Common
> Issue Type: Task
> Components: build
> Affects Versions: 3.3.2
> Reporter: Steve Loughran
> Assignee: Steve Loughran
> Priority: Major
> Labels: pull-request-available
> Time Spent: 1.5h
> Remaining Estimate: 0h
>
> Hadoop 3.3.3 is a minor followup release to Hadoop 3.3.2 with all the
> incremental changes which went in to the 3.2.4 release
> * minor CVE fixes in Hadoop source
> * CVE fixes in dependencies we know of (protobuf unmarshalling leading to
> DoS, jackson stack overflow,...)
> * replacement of log4j 1.2.17 to reload4j
> * node.js update
> This is not a release off branch-3.3, it is a fork of 3.3.2 with the changes.
> The next release of branch-3.3 will be numbered hadoop-3.3.4; updating maven
> versions and JIRA fix versions is part of this release process.
> The changes here are already in branch 3.2.4; this completes the set
> CVEs fixed
> * CVE-2022-26612: Apache Hadoop: Arbitrary file write in
> FileUtil#unpackEntries on Windows (HADOOP-18155)
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
