[
https://issues.apache.org/jira/browse/HADOOP-18622?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17685283#comment-17685283
]
Ashutosh Gupta edited comment on HADOOP-18622 at 2/7/23 12:38 PM:
------------------------------------------------------------------
Thanks [~aonikolaev] for reporting this. I have gone through both the CVEs
mentioned in description. I am still not sure how it is affecting ant.
Can you please share your insights on that? Thanks
was (Author: groot):
Thanks [~aonikolaev] for reporting this. I have gone through both the CVEs
mentioned in description. I am still not sure how it affecting ant.
Can you please share your insights on that? Thanks
> Upgrade ant to 1.10.13
> ----------------------
>
> Key: HADOOP-18622
> URL: https://issues.apache.org/jira/browse/HADOOP-18622
> Project: Hadoop Common
> Issue Type: Improvement
> Reporter: Aleksandr Nikolaev
> Assignee: Ashutosh Gupta
> Priority: Major
> Labels: pull-request-available
> Fix For: 3.4.0, 3.3.5
>
>
> lnerabilities reported in org.apache.ant:ant:1.10.11
> *
> [CVE-2022-23437|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23437]
> *
> [CVE-2020-14338|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14338]
> suggested: org.apache.ant:ant ~> 1.10.13
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
