Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-19114

upgrade to commons-compress 1.26.1 due to cves

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 3.4.0
    • None
    • build, CVE

    Description

      2 recent CVEs fixed - https://mvnrepository.com/artifact/org.apache.commons/commons-compress

      Important: Denial of Service CVE-2024-25710
      Moderate: Denial of Service CVE-2024-26308

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #6636

          Activity

            People

              pj.fanning PJ Fanning
              fanningpj PJ Fanning
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: