Kaushik Gunasekaran created OOZIE-3374:
------------------------------------------
Summary: In Oozie 4.3.1 there are security vulnerabilities with
dependencies
Key: OOZIE-3374
URL: https://issues.apache.org/jira/browse/OOZIE-3374
Project: Oozie
Issue Type: Bug
Components: core, ui
Affects Versions: 4.3.1
Reporter: Kaushik Gunasekaran
Following Components are having security vulnerabilities:-
Component Old_Version Vulnerabilities
com.google.guava » guava 11.0.2 CVE-2018-10237
org.apache.derby » derby 10.10.1.1 CVE-2018-1313;CVE-2015-1832
org.apache.hadoop 2.4.0 CVE-2014-0229
org.apache.hbase » hbase 0.94.27 CVE-2013-2193
org.apache.hive 1.2.0 CVE-2018-1284;CVE-2018-1282
log4j » log4j 1.2.17 CVE-2017-5645
org.apache.activemq 5.13.3 CVE-2016-3088;CVE-2016-6810
org.codehaus.jackson 1.8.8 Very Old
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
