Uploaded image for project: 'Apache Avro'
  1. Apache Avro
  2. AVRO-3213

Update commons-compress to version 1.21

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • 1.10.0, 1.10.1, 1.10.2
    • 1.11.0
    • dependencies, java

    Description

      Please upgrade Apache Commons Compress to version 1.21 as current version in avro v1.10.x (commons-compress v1.20) has 4 High vulnerabilities CVE-2021-35515, CVE-2021-35516, CVE-2021-35517 and CVE-2021-36090

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. AVRO-3215 common-compress dependecy has security vulnerabilities

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              rajivbandi Rajiv Bandi
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: