[
https://issues.apache.org/jira/browse/RANGER-4145?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Himanshu Maurya resolved RANGER-4145.
-------------------------------------
Resolution: Later
> Upgrade the bouncycastle version for bcprov-jdk15on from 1.68
> -------------------------------------------------------------
>
> Key: RANGER-4145
> URL: https://issues.apache.org/jira/browse/RANGER-4145
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Himanshu Maurya
> Assignee: Himanshu Maurya
> Priority: Major
>
> Bouncy Castle is vulnerable to Denial of Service (DoS).The {{Dump.class}}
> file utilises {{FileInputStreams}} objects when reading from user-provided
> files, but fails to close these streams properly. This can lead to resource
> leaks.
> Affected versions are 1.69 and older.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
