[jira] [Work logged] (HDFS-16410) Insecure Xml parsing in OfflineEditsXmlLoader

Wed, 05 Jan 2022 00:33:06 -0800 


     [ 
https://issues.apache.org/jira/browse/HDFS-16410?focusedWorklogId=703806&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-703806
 ]

ASF GitHub Bot logged work on HDFS-16410:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 05/Jan/22 08:32
            Start Date: 05/Jan/22 08:32
    Worklog Time Spent: 10m 
      Work Description: ashutoshcipher commented on pull request #3854:
URL: https://github.com/apache/hadoop/pull/3854#issuecomment-1005480432


   > Makes sense. are there other places in the code with the same issue? If so 
it would probably be best to have something in hadoop-common so it could be 
done consistently everywhere.
   
   Thanks for the review @steveloughran. I checked the complete codebase, 
didn't have this issue anywhere else. I think we can keep the changes in 
OfflineEditsXmlLoader.java.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


Issue Time Tracking
-------------------

    Worklog Id:     (was: 703806)
    Time Spent: 0.5h  (was: 20m)

> Insecure Xml parsing in OfflineEditsXmlLoader 
> ----------------------------------------------
>
>                 Key: HDFS-16410
>                 URL: https://issues.apache.org/jira/browse/HDFS-16410
>             Project: Hadoop HDFS
>          Issue Type: Bug
>    Affects Versions: 3.3.1
>            Reporter: Ashutosh Gupta
>            Assignee: Ashutosh Gupta
>            Priority: Minor
>              Labels: pull-request-available, security
>          Time Spent: 0.5h
>  Remaining Estimate: 0h
>
> Insecure Xml parsing in OfflineEditsXmlLoader 
> [https://github.com/apache/hadoop/blob/03cfc852791c14fad39db4e5b14104a276c08e59/hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/tools/offlineEditsViewer/OfflineEditsXmlLoader.java#L88]



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to