[ https://issues.apache.org/jira/browse/SPARK-27167?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jerry Garcia updated SPARK-27167: --------------------------------- Description: Will there be a big impact on my system if my current /static/jquery-1.11.1.min.js will be update to latest version ? As per VA scan javascript library that we are currently using is vulnerable and we wanted to address this vulnerability. Appreciate any help we could get from the community. Please do refer on the attachment provided. Thank you, was: Will there be a big impact on my system if my current /static/jquery-1.11.1.min.js will be update to latest version ? As per VA scan javascript library that we are currently using is vulnerable and we wanted to address this vulnerability. Appreciate any help we could get from the community. Please do refer below for more information: |CVS|Severity|Description|Impact|Recommendation|Affected|Reference:| |Vulnerable Javascript library|Medium|You are using a vulnerable Javascript library. One or more vulnerabilities were reported for this version of the Javascript library. Consult Attack details and Web References for more information about the affected library and the vulnerabilities that were reported.|Consult References for more information.|Upgrade to the latest version.|/static/jquery-1.11.1.min.js Details Detected Javascript library jquery version 1.11.1. The version was detected from filename.|References: [https://github.com/jquery/jquery/issues/2432] [http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/] [https://snyk.io/test/npm/jquery/1.11.1] related reference not directly with spark: [https://community.hortonworks.com/questions/89874/ambari-jquery-172-upgrade-to-jquery191.html]| Thank you, > What would be the possible impact if I upgrade /static/jquery-1.11.1.min.js ? > ----------------------------------------------------------------------------- > > Key: SPARK-27167 > URL: https://issues.apache.org/jira/browse/SPARK-27167 > Project: Spark > Issue Type: Question > Components: Spark Core > Affects Versions: 1.6.2 > Reporter: Jerry Garcia > Priority: Minor > > Will there be a big impact on my system if my current > /static/jquery-1.11.1.min.js will be update to latest version ? > As per VA scan javascript library that we are currently using is vulnerable > and we wanted to address this vulnerability. Appreciate any help we could get > from the community. > Please do refer on the attachment provided. > > > Thank you, > -- This message was sent by Atlassian JIRA (v7.6.3#76005) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org