[ https://issues.apache.org/jira/browse/HIVE-25920?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sankar Hariappan updated HIVE-25920: ------------------------------------ Labels: hive-3.2.0-must pull-request-available (was: pull-request-available) > Bump Xerce2 to 2.12.2 > --------------------- > > Key: HIVE-25920 > URL: https://issues.apache.org/jira/browse/HIVE-25920 > Project: Hive > Issue Type: Task > Reporter: Takanobu Asanuma > Assignee: Takanobu Asanuma > Priority: Major > Labels: hive-3.2.0-must, pull-request-available > Fix For: 4.0.0-alpha-1 > > Time Spent: 40m > Remaining Estimate: 0h > > Xerce 2.12.1 has high-level vulnerabilities. > * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23437] -- This message was sent by Atlassian Jira (v8.20.10#820010)