[jira] [Resolved] (BEAM-6267) Guava library DOS vulnerability in Beam Java SDK

JIRA Thu, 18 Jul 2019 01:46:04 -0700


     [ 
https://issues.apache.org/jira/browse/BEAM-6267?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Ismaël Mejía resolved BEAM-6267.
--------------------------------
       Resolution: Fixed
    Fix Version/s: 2.15.0

> Guava library DOS vulnerability in Beam Java SDK
> ------------------------------------------------
>
>                 Key: BEAM-6267
>                 URL: https://issues.apache.org/jira/browse/BEAM-6267
>             Project: Beam
>          Issue Type: Bug
>          Components: sdk-java-core
>    Affects Versions: 2.4.0, 2.9.0
>         Environment: Java
>            Reporter: Abdul Qadeer
>            Assignee: Kenneth Knowles
>            Priority: Major
>             Fix For: 2.15.0
>
>
> Guava 11.0 through 24.x are affected by the following vulnerability:
> [https://groups.google.com/forum/#!topic/guava-announce/xqWALw4W1vs/discussion]
> https://nvd.nist.gov/vuln/detail/2018-10237
> All Beam versions that use these Guava versions need to be updated with 
> latest fixed Guava library.
>  



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

[jira] [Resolved] (BEAM-6267) Guava library DOS vulnerability in Beam Java SDK

Reply via email to