[
https://issues.apache.org/jira/browse/FLUME-2678?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14499239#comment-14499239
]
Hari Shreedharan commented on FLUME-2678:
-----------------------------------------
I know this is not really your change, but we should move the version and scope
to the top level pom and the sink should just use it from there.
> Upgrade xalan to 2.7.2 to take care of CVE-2014-0107 vulnerability
> ------------------------------------------------------------------
>
> Key: FLUME-2678
> URL: https://issues.apache.org/jira/browse/FLUME-2678
> Project: Flume
> Issue Type: Bug
> Affects Versions: 1.6, v1.7.0
> Reporter: Johny Rufus
> Assignee: Johny Rufus
> Fix For: 1.6, v1.7.0
>
> Attachments: FLUME-2678.patch
>
>
> To take care of the CVE-2014-0107 vulnerability, we need to bump up xalan
> version to 2.7.2
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
