[FLINK-23438] Bump httpclient from 4.5.3 and 4.5.9 to 4.5.13 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.14.0
Component/s: Connectors / ElasticSearch, Connectors / Kinesis, FileSystems
Labels:
- pull-request-available

Description

Flink is still using org.apache.httpcomponents.httpclient:4.5.3 and org.apache.httpcomponents.httpclient:4.5.9. Those versions are impacted by CVE-2020-13956 (though Flink is not impacted by it). The latest available version is 4.5.13

Attachments

Issue Links

links to

GitHub Pull Request #16546

Activity

People

Assignee:: Martijn Visser

Reporter:: Martijn Visser

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 20/Jul/21 18:50

Updated:: 28/Aug/21 12:23

Resolved:: 27/Jul/21 06:58