Uploaded image for project: 'Flink'
  1. Flink
  2. FLINK-22602

Upgrade parquet to 1.12.0 due to CVEs

    XMLWordPrintableJSON

    Details

      Description

      We scanned jackson-databind&core for some vulnerabilities (CVE-2020-24616/CVE-2021-20190/CVE-2020-36184/CVE-2020-36183/CVE-2020-9546...). Apache Parquet depends on them, so we upgraded parquet to version 1.12.0.

       

      parquet code link:https://github.com/apache/parquet-mr/blob/db75a6815f2ba1d1ee89d1a90aeb296f1f3a8f20/pom.xml#L78

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                Bo Cui Bo Cui
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: