[
https://issues.apache.org/jira/browse/HADOOP-18858?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andrew Story updated HADOOP-18858:
----------------------------------
Description:
Update guava to 32.0.1 or higher due to CVE:
[https://nvd.nist.gov/vuln/detail/CVE-2023-2976]
hadoop-shaded-guava 1.1.1 is currently using 30.1.1-jre per security scanning
tools
was:
Update guava to 32.0.1 or higher due to CVE:
[https://nvd.nist.gov/vuln/detail/CVE-2023-2976]
hadoop-shaded-guava 1.1.1 us currently using 30.1.1-jre per security scanning
tools
> Upgrade guava due to CVE
> ------------------------
>
> Key: HADOOP-18858
> URL: https://issues.apache.org/jira/browse/HADOOP-18858
> Project: Hadoop Common
> Issue Type: Bug
> Components: hadoop-thirdparty
> Affects Versions: 3.3.6
> Reporter: Andrew Story
> Priority: Major
>
> Update guava to 32.0.1 or higher due to CVE:
> [https://nvd.nist.gov/vuln/detail/CVE-2023-2976]
> hadoop-shaded-guava 1.1.1 is currently using 30.1.1-jre per security scanning
> tools
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
