[HADOOP-19172] Upgrade aws-java-sdk to 1.12.720 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.4.0, 3.3.6
Fix Version/s: 3.3.9, 3.5.0, 3.4.1
Component/s: build, fs/s3
Labels:
- pull-request-available

Description

Update to the latest AWS SDK, to stop anyone worrying about the ion library CVE https://nvd.nist.gov/vuln/detail/CVE-2024-21634

This isn't exposed in the s3a client, but may be used downstream.

on v2 sdk releases, the v1 sdk is only used during builds; 3.3.x it is shipped

Attachments

Issue Links

links to

GitHub Pull Request #6823

GitHub Pull Request #6829

Activity

People

Assignee:: Steve Loughran

Reporter:: Steve Loughran

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 13/May/24 14:10

Updated:: 16/May/24 14:00

Resolved:: 16/May/24 14:00