[HBASE-28127] Upgrade avro version to 1.11.3 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.6.0, 2.5.6, 3.0.0-beta-1
Component/s: dependencies, security
Labels:
None

Hadoop Flags:

Reviewed

Description

Dependabot has an alert about https://nvd.nist.gov/vuln/detail/CVE-2023-39410

But it says that it can not upgrade the dependencies automatically.

Let's update it manually.

Attachments

Issue Links

links to

GitHub Pull Request #5454

Activity

People

Assignee:: Duo Zhang

Reporter:: Duo Zhang

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 02/Oct/23 13:41

Updated:: 10/Oct/23 19:58

Resolved:: 09/Oct/23 15:01