Uploaded image for project: 'Spark'
  1. Spark
  2. SPARK-36994

Upgrade Apache Thrift

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Duplicate
    • 3.0.1
    • None
    • Security
    • None

    Description

      Image:

      • spark:3.0.1

      Components Affected: 

      • Apache Thrift

      Recommendation:

      • upgrade Apache Thrift 

      CVE:

       

      Component Name Component Version Name Vulnerability Fixed version
      Apache Thrift 0.11.0-4. CVE-2019-0205 0.13.0
      Apache Thrift 0.11.0-4. CVE-2019-0210 0.13.0
      Apache Thrift 0.11.0-4. CVE-2020-13949 0.14.1

      Attachments

        Issue Links

          duplicates

          Task - A task that needs to be done. SPARK-37090 Upgrade libthrift to resolve security vulnerabilities

          • Major - Major loss of function.
          • In Progress
          is related to

          Sub-task - The sub-task of the issue SPARK-47018 Upgrade built-in Hive to 2.3.10

          • Major - Major loss of function.
          • Open
          links to

          Pull request #34280 [Github] Pull Request #34280 (HyukjinKwon)

          Pull request #34280 [Github] Pull Request #34280 (HyukjinKwon)

          Activity

            People

              Unassigned Unassigned
              girishkaja kaja girish
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: