[jira] [Commented] (DRILL-8263) use secure, non-preview version of libpam4j

ASF GitHub Bot (Jira) Tue, 19 Jul 2022 12:46:07 -0700


    [ 
https://issues.apache.org/jira/browse/DRILL-8263?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17568705#comment-17568705
 ]


ASF GitHub Bot commented on DRILL-8263:
---------------------------------------

pjfanning opened a new pull request, #2603:
URL: https://github.com/apache/drill/pull/2603

   ## Description
   
   CVE in libpam4j
   
   ## Documentation
   (Please describe user-visible changes similar to what should appear in the 
Drill documentation.)
   
   ## Testing
   (Please describe how this PR has been tested.)
   




> use secure, non-preview version of libpam4j
> -------------------------------------------
>
>                 Key: DRILL-8263
>                 URL: https://issues.apache.org/jira/browse/DRILL-8263
>             Project: Apache Drill
>          Issue Type: Improvement
>          Components: Execution - Data Types
>            Reporter: PJ Fanning
>            Priority: Major
>
> https://github.com/apache/drill/blob/master/exec/java-exec/pom.xml#L32
> See dependency with CVE in:
> https://mvnrepository.com/artifact/org.apache.drill.exec/drill-java-exec/1.20.0



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (DRILL-8263) use secure, non-preview version of libpam4j

Reply via email to