Nikhil Gupta created HIVE-25802: ----------------------------------- Summary: Log4j2 Vulnerability in Hive Storage API Key: HIVE-25802 URL: https://issues.apache.org/jira/browse/HIVE-25802 Project: Hive Issue Type: Bug Components: storage-api Affects Versions: 4.0.0 Reporter: Nikhil Gupta Fix For: 4.0.0
Storage API branch also brings in log4j2 dependency <= 2.14.1 that can still expose a vulnerability in hive -- This message was sent by Atlassian Jira (v8.20.1#820001)