[
https://issues.apache.org/jira/browse/HADOOP-17844?focusedWorklogId=637762&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-637762
]
ASF GitHub Bot logged work on HADOOP-17844:
-------------------------------------------
Author: ASF GitHub Bot
Created on: 13/Aug/21 11:28
Start Date: 13/Aug/21 11:28
Worklog Time Spent: 10m
Work Description: prasad-acit removed a comment on pull request #3299:
URL: https://github.com/apache/hadoop/pull/3299#issuecomment-898073289
Thank you for quick review and feedback.
Jenkins got completed and no new failures. Also, it's a third party upgrade,
no new tests added.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
Issue Time Tracking
-------------------
Worklog Id: (was: 637762)
Time Spent: 1h 10m (was: 1h)
> Upgrade JSON smart to 2.4.7
> ---------------------------
>
> Key: HADOOP-17844
> URL: https://issues.apache.org/jira/browse/HADOOP-17844
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Renukaprasad C
> Assignee: Renukaprasad C
> Priority: Major
> Labels: pull-request-available
> Time Spent: 1h 10m
> Remaining Estimate: 0h
>
> Currently we are using JSON Smart 2.4.2 version which is vulnerable to -
> CVE-2021-31684.
> We can upgrade the version to 2.4.7 (2.4.5 or later).
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
