Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-35326

Upgrade Jersey to 2.34

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 3.0.2, 3.1.1, 3.2.0
    • Fix Version/s: 3.2.0
    • Component/s: Build
    • Labels:
      None

      Description

      CVE-2021-28168, a local information disclosure vulnerability, is reported.
      Spark 3.1.1, 3.0.2 and 3.2.0 use an affected version 2.30.
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28168

        Attachments

          Activity

            People

            • Assignee:
              sarutak Kousuke Saruta
              Reporter:
              sarutak Kousuke Saruta
            • Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: