[
https://issues.apache.org/jira/browse/FLINK-23438?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Martijn Visser updated FLINK-23438:
-----------------------------------
Description: Flink is still using
org.apache.httpcomponents.httpclient:4.5.3 and
org.apache.httpcomponents.httpclient:4.5.9. Those versions are impacted by
CVE-2020-13956 (though Flink is not impacted by it). The latest available
version is 4.5.13 (was: Flink is still using
org.apache.httpcomponents.httpclient:4.5.3. That version is impacted by
CVE-2020-13956 (though Flink is not impacted by it). The latest available
version is 4.5.13 )
> Bump httpclient from 4.5.3 and 4.5.9 to 4.5.13
> ----------------------------------------------
>
> Key: FLINK-23438
> URL: https://issues.apache.org/jira/browse/FLINK-23438
> Project: Flink
> Issue Type: Improvement
> Reporter: Martijn Visser
> Assignee: Martijn Visser
> Priority: Minor
> Labels: pull-request-available
>
> Flink is still using org.apache.httpcomponents.httpclient:4.5.3 and
> org.apache.httpcomponents.httpclient:4.5.9. Those versions are impacted by
> CVE-2020-13956 (though Flink is not impacted by it). The latest available
> version is 4.5.13
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
