[jira] [Updated] (SPARK-55398) CVE-2025-67721 Bump io.airlift:aircompressor

Isaac (Jira) Wed, 11 Feb 2026 02:43:04 -0800


     [ 
https://issues.apache.org/jira/browse/SPARK-55398?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Isaac updated SPARK-55398:
--------------------------
    Affects Version/s: 4.0.2

> CVE-2025-67721 Bump io.airlift:aircompressor
> --------------------------------------------
>
>                 Key: SPARK-55398
>                 URL: https://issues.apache.org/jira/browse/SPARK-55398
>             Project: Spark
>          Issue Type: Dependency upgrade
>          Components: SQL
>    Affects Versions: 4.0.2, 4.2.0, 4.1.1
>            Reporter: Isaac
>            Priority: Minor
>
> There is a vulnerability in the *io.airlift:aircompressor* library
> [https://nvd.nist.gov/vuln/detail/CVE-2025-67721]
>  
> It would be needed to migrate to v3 version of the library 
> (https://mvnrepository.com/artifact/io.airlift/aircompressor-v3)



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (SPARK-55398) CVE-2025-67721 Bump io.airlift:aircompressor

Reply via email to