rmetzger commented on a change in pull request #408:
URL: https://github.com/apache/flink-web/pull/408#discussion_r553206532
##########
File path: security.md
##########
@@ -0,0 +1,74 @@
+---
+title: "Security"
+---
+
+{% toc %}
+
+
+## Security Updates
+
+This section lists fixed vulnerabilities in Flink.
+
+<table class="table">
+ <thead>
+ <tr>
+ <th style="width: 20%">CVE ID</th>
+ <th style="width: 30%">Affected Flink versions</th>
+ <th style="width: 50%">Notes</th>
+ </tr>
+ </thead>
+ <tr>
+ <td>
+ <a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1960";>CVE-2020-1960</a>
+ </td>
+ <td>
+ 1.1.0 to 1.1.5, 1.2.0 to 1.2.1, 1.3.0 to 1.3.3, 1.4.0
to 1.4.2, 1.5.0 to 1.5.6, 1.6.0 to 1.6.4, 1.7.0 to 1.7.2, 1.8.0 to 1.8.3, 1.9.0
to 1.9.2, 1.10.0
+ </td>
+ <td>
+ <a
href="https://github.com/apache/flink/commit/804ae70024bf8be7c0c7093d02addb080c318662";>Fixed
in commit 804ae70024bf8be7c0c7093d02addb080c318662</a> <br>
+ Users are advised to upgrade to Flink 1.9.3 or 1.10.1
or later versions.
Review comment:
I removed the commit sha.
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
