[jira] [Commented] (AVRO-3215) common-compress dependecy has security vulnerabilities

Martin Tzvetanov Grigorov (Jira) Thu, 21 Oct 2021 12:08:06 -0700


    [ 
https://issues.apache.org/jira/browse/AVRO-3215?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17432674#comment-17432674
 ]


Martin Tzvetanov Grigorov commented on AVRO-3215:
-------------------------------------------------

[~frouleau] 1.11.0 RC2 is being voted at dev@ - 
[https://lists.apache.org/thread.html/r210c9fd44eaf8bf9546e84ba385bde1f678c5d12eda18ec176a37d25%40%3Cdev.avro.apache.org%3E]

Please test it and cast your vote!

> common-compress dependecy has security vulnerabilities 
> -------------------------------------------------------
>
>                 Key: AVRO-3215
>                 URL: https://issues.apache.org/jira/browse/AVRO-3215
>             Project: Apache Avro
>          Issue Type: Bug
>            Reporter: Xavier
>            Priority: Major
>             Fix For: 1.11.0
>
>
> Hi,
> The latest apache avro version 1.10.2 has dependecy on  
> org.apache.commons:commons-compress:1.20 which has security vulnerabilities. 
> Please upgrade to org.apache.commons:commons-compress:1.21
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (AVRO-3215) common-compress dependecy has security vulnerabilities

Reply via email to