[
https://issues.apache.org/jira/browse/HADOOP-16990?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17205783#comment-17205783
]
Wei-Chiu Chuang commented on HADOOP-16990:
------------------------------------------
{noformat}
[INFO] +- org.mock-server:mockserver-netty:jar:3.9.2:test
[INFO] | +- org.mock-server:mockserver-client-java:jar:3.9.2:test
[INFO] | +- org.mock-server:mockserver-core:jar:3.9.2:test
[INFO] | | +- io.netty:netty-codec-socks:jar:4.0.24.Final:test
{noformat}
i don't think we are really affected, especially since it's in test scope. But
very annoying when users complain about a new CVE found in the classpath.
> Update Mockserver
> -----------------
>
> Key: HADOOP-16990
> URL: https://issues.apache.org/jira/browse/HADOOP-16990
> Project: Hadoop Common
> Issue Type: Task
> Reporter: Wei-Chiu Chuang
> Assignee: Attila Doroszlai
> Priority: Major
>
> We are on Mockserver 3.9.2 which is more than 5 years old. Time to update.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
