[HADOOP-17571] Upgrade com.fasterxml.woodstox:woodstox-core for security reasons - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 3.3.1, 3.4.0
Fix Version/s: 3.3.1, 3.4.0, 2.10.2, 3.2.3
Component/s: common
Labels:
- pull-request-available

Target Version/s:

3.3.1, 3.4.0, 2.10.2, 3.2.3
Hadoop Flags:

Reviewed

Description

Due to security concerns (CVE: sonatype-2018-0624), we should bump up woodstox-core to 5.3.0.

Attachments

Issue Links

relates to

HADOOP-17586 Upgrade org.codehaus.woodstox:stax2-api to 4.2.1

Resolved

links to

GitHub Pull Request #2757

Activity

People

Assignee:: Viraj Jasani

Reporter:: Viraj Jasani

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 10/Mar/21 05:48

Updated:: 27/Jan/24 06:07

Resolved:: 11/Mar/21 20:51

Time Tracking

Estimated:

Not Specified

Remaining:

0h

Logged:

1h