Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-15960 Update guava to 27.0-jre in hadoop-project
  3. HADOOP-16210

Update guava to 27.0-jre in hadoop-project trunk

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Resolved
    • Critical
    • Resolution: Fixed
    • 3.3.0
    • 3.3.0
    • build
    • Incompatible change
    • Guava has been updated to 27.0. Code built against this new version may not link against older releases because of new overloads of methods like Preconditions.checkArgument().

    Description

      com.google.guava:guava should be upgraded to 27.0-jre due to new CVE's found CVE-2018-10237.

      This is a sub-task for trunk from HADOOP-15960 to track issues with that particular branch.

      Attachments

        1. HADOOP-16210.001.patch
          12 kB
          Gabor Bota
        2. HADOOP-16210.002.findbugsfix.wip.patch
          13 kB
          Gabor Bota
        3. HADOOP-16210.002.patch
          13 kB
          Gabor Bota
        4. HADOOP-16210.003.patch
          15 kB
          Gabor Bota

        Issue Links

          causes

          Sub-task - The sub-task of the issue HADOOP-16222 Fix new deprecations after guava 27.0 update in trunk

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. TEZ-4074 Tez does not run with Hadoop Trunk (3.3.0-snapshot)

          • Major - Major loss of function.
          • Resolved
          contains

          Sub-task - The sub-task of the issue HADOOP-15272 Update Guava, see what breaks

          • Major - Major loss of function.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-18670 Spark application's dependency conflicts with Hadoop's dependency

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved

          Task - A task that needs to be done. HADOOP-17440 Downgrade guava version in trunk

          • Major - Major loss of function.
          • Resolved
          requires

          Sub-task - The sub-task of the issue HADOOP-16220 Add findbugs ignores for unjustified issues during update to guava to 27.0-jre in hadoop-project

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue HADOOP-16230 Correct findbug ignores for unjustified issues during update to guava to 27.0-jre in hadoop-project

          • Major - Major loss of function.
          • Resolved

          Sub-task - The sub-task of the issue HADOOP-16218 findbugs warning of null param to non-nullable method in Configuration with Guava update

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #674

          Activity

            People

              gabor.bota Gabor Bota
              gabor.bota Gabor Bota
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: