[HADOOP-18689] Bump jettison from 1.5.3 to 1.5.4 in /hadoop-project - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 3.4.0, 3.3.9
Fix Version/s: 3.4.0, 3.3.6
Component/s: common
Labels:
- pull-request-available

Target Version/s:

3.4.0
Hadoop Flags:

Reviewed

Description

PR from github depandabot
https://github.com/apache/hadoop/pull/5502

Mentions CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-1436

Creating ticket for tracking.

Attachments

Issue Links

is related to

HADOOP-18587 upgrade to jettison 1.5.3 to fix CVE-2022-40150

Resolved

links to

GitHub Pull Request #5502

GitHub Pull Request #5586

Activity

People

Assignee:: Ayush Saxena

Reporter:: Ayush Saxena

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 01/Apr/23 19:16

Updated:: 27/Jan/24 08:26

Resolved:: 22/Apr/23 10:50