[
https://issues.apache.org/jira/browse/SPARK-13199?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15134022#comment-15134022
]
Ted Yu commented on SPARK-13199:
--------------------------------
This task should be done when there is a Hadoop release that upgrades
httpclient to 4.5+
I logged this as Bug since it deals with CVEs.
See HADOOP-12767.
> Upgrade apache httpclient version to the latest 4.5 for security
> ----------------------------------------------------------------
>
> Key: SPARK-13199
> URL: https://issues.apache.org/jira/browse/SPARK-13199
> Project: Spark
> Issue Type: Improvement
> Components: Build
> Reporter: Ted Yu
> Priority: Minor
>
> Various SSL security fixes are needed.
> See: CVE-2012-6153, CVE-2011-4461, CVE-2014-3577, CVE-2015-5262.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
