[
https://issues.apache.org/jira/browse/YARN-10731?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17332940#comment-17332940
]
Akira Ajisaka commented on YARN-10731:
--------------------------------------
JQuery is now 3.5.1, and now there is no CVE. Hi [~hxhefx], do you think there
is any vulnerability in 3.5.1?
> Please upgrade jquery to 3.6.0
> ------------------------------
>
> Key: YARN-10731
> URL: https://issues.apache.org/jira/browse/YARN-10731
> Project: Hadoop YARN
> Issue Type: Improvement
> Components: buid, security, webapp
> Affects Versions: 3.3.0, 3.2.1, 3.2.2
> Reporter: helen huang
> Priority: Major
>
> Our fortify scan picked up a couple of security issues with the current
> jquery lib being used by hadoop-yarn-common. Please upgrade it to the latest
> version available (3.6.0). Thanks!
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org
