[KAFKA-9996] upgrade zookeeper to 3.5.8 to address security vulnerabilities - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.5.0
Fix Version/s: 2.6.0, 2.4.2, 2.5.1
Component/s: packaging
Labels:
None

Description

Kafka is now using zookeeper 3.5.7, which is affected by CVE-2020-8840 and CVE-2020-9488. Those 2 are resolved in 3.5.8.

Attachments

Issue Links

links to

GitHub Pull Request #8674

Activity

People

Assignee:: Ismael Juma

Reporter:: Emanuele Maccherani

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 14/May/20 18:31

Updated:: 18/Jul/20 17:41

Resolved:: 18/Jul/20 17:41