This is an automated email from the ASF dual-hosted git repository.
ctubbsii pushed a commit to branch 2.1
in repository https://gitbox.apache.org/repos/asf/accumulo.git
The following commit(s) were added to refs/heads/2.1 by this push:
new f79bf07950 Bump ZooKeeper for CVE-2023-44981 (#3899)
f79bf07950 is described below
commit f79bf079509b6e64ac002425163df4bf191a9d28
Author: Christopher Tubbs <ctubb...@apache.org>
AuthorDate: Mon Oct 30 13:05:28 2023 -0400
Bump ZooKeeper for CVE-2023-44981 (#3899)
Bump ZooKeeper to 3.8.3 to address warnings about CVE-2023-44981
(Note: this CVE affects SASL-configured server deployments of ZK, not ZK
client code, like how Accumulo uses it, but this removes the warning
from GitHub about critical vulnerabilities in Accumulo, and in general,
Accumulo tries to develop against the latest patched version of a
particular release anyway.)
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 87cdf9c414..12e7379046 100644
--- a/pom.xml
+++ b/pom.xml
@@ -156,7 +156,7 @@
<version.powermock>2.0.9</version.powermock>
<version.slf4j>2.0.7</version.slf4j>
<version.thrift>0.17.0</version.thrift>
- <version.zookeeper>3.8.2</version.zookeeper>
+ <version.zookeeper>3.8.3</version.zookeeper>
</properties>
<dependencyManagement>
<dependencies>
