[jira] [Commented] (AVRO-2531) Update commons-compress to version 1.19

ASF subversion and git services (Jira) Wed, 28 Aug 2019 02:10:17 -0700


    [ 
https://issues.apache.org/jira/browse/AVRO-2531?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16917580#comment-16917580
 ]


ASF subversion and git services commented on AVRO-2531:
-------------------------------------------------------

Commit 52e6c9eb34674ca48cac8c55192b925c6aa3553d in avro's branch 
refs/heads/branch-1.9 from Ismaël Mejía
[ https://gitbox.apache.org/repos/asf?p=avro.git;h=52e6c9e ]

AVRO-2531: Update commons-compress to version 1.19

(cherry picked from commit bd559d63d5d86eeff7b317d8188cdd7038c9f3fe)


> Update commons-compress to version 1.19
> ---------------------------------------
>
>                 Key: AVRO-2531
>                 URL: https://issues.apache.org/jira/browse/AVRO-2531
>             Project: Apache Avro
>          Issue Type: Improvement
>          Components: java
>    Affects Versions: 1.9.0
>            Reporter: Ismaël Mejía
>            Assignee: Ismaël Mejía
>            Priority: Critical
>             Fix For: 1.9.1
>
>
> Avro's current version of commons-compress (1.18) is subject to a DoS 
> vulnerability so we need to upgrade it [CVE-2019-12402]



--
This message was sent by Atlassian Jira
(v8.3.2#803003)

[jira] [Commented] (AVRO-2531) Update commons-compress to version 1.19

Reply via email to