[FLINK-23542] Upgrade Checkstyle to at least 8.29 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Technical Debt
Status: Open
Priority: Not a Priority
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: Build System
Labels:
- auto-deprioritized-minor
- pull-request-available

Description

Checkstyle version < 8.29 are still vulnerable to XML External Entity (XXE) Processing due to an incomplete fix for CVE-2019-9658.

Impact
User: Build Maintainers
This vulnerability probably doesn't impact Maven/Gradle users as, in most cases, these builds are processing files that are trusted, or pre-vetted by a pull request reviewer before being run on internal CI infrastructure.

Attachments

Issue Links

duplicates

FLINK-29649 upgrade Maven checkstyle plugin to latest version >= v8.30

Closed

links to

GitHub Pull Request #16649

Activity

People

Assignee:: Unassigned

Reporter:: Martijn Visser

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 29/Jul/21 09:57

Updated:: 12/Mar/24 15:15