[jira] [Updated] (PIG-4811) Upgrade groovy library to address MethodClosure vulnerability

Daniel Dai (JIRA) Wed, 17 Feb 2016 10:27:09 -0800

     [ 
https://issues.apache.org/jira/browse/PIG-4811?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Daniel Dai updated PIG-4811:
----------------------------
    Status: Patch Available  (was: Open)

> Upgrade groovy library to address MethodClosure vulnerability
> -------------------------------------------------------------
>
>                 Key: PIG-4811
>                 URL: https://issues.apache.org/jira/browse/PIG-4811
>             Project: Pig
>          Issue Type: Bug
>            Reporter: Daniel Dai
>            Assignee: Daniel Dai
>             Fix For: 0.16.0
>
>         Attachments: PIG-4811.patch
>
>
> Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3253
> As Groovy versions 1.7.0 through 2.4.3 are affected by the above CVE, groovy 
> library should be upgraded.
> I'd like to upgrade to the latest version, which is 2.4.5.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (PIG-4811) Upgrade groovy library to address MethodClosure vulnerability

Reply via email to