Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-17844

Upgrade JSON smart to 2.4.7

    XMLWordPrintableJSON

Details

    • Reviewed

    Description

      Currently we are using JSON Smart 2.4.2 version which is vulnerable to - CVE-2021-31684.

      We can upgrade the version to 2.4.7 (2.4.5 or later).

      Attachments

        Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. HADOOP-17885 Upgrade JSON smart to 1.3.3 on branch-2.10

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-17633 Bump json-smart to 2.4.2 and nimbus-jose-jwt to 9.8 due to CVEs

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #3299

          Activity

            People

              prasad-acit Renukaprasad C
              prasad-acit Renukaprasad C
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1h 40m
                  1h 40m