Uploaded image for project: 'Flink'
  1. Flink
  2. FLINK-22747

Update commons-io to 2.8

    XMLWordPrintableJSON

Details

    Description

      commons-io 2.7 has known vulnerabilities that are detected in Flink by some tools. Even though it is unlikely that we use the mentioned class. We should upgrade it to make the tools happy.

       

      Context:

      
      VULNDB-239195
      "Vendor Specific News/Changelog Entry
      https://commons.apache.org/proper/commons-io/changes-report.html#a2.8.0
      Vendor Specific Solution URL
      https://github.com/apache/commons-io/commit/0de91c048fb575b9e7906e966a4428574fd03695
      Vendor Specific Solution URL
      https://github.com/apache/commons-io/commit/97ae01c95837f50a2e9be34c370b271c4d8fc88b
      Bug Tracker
      https://issues.apache.org/jira/browse/IO-675"
      
      

      Attachments

        Issue Links

          Activity

            People

              twalthr Timo Walther
              twalthr Timo Walther
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: