[
https://issues.apache.org/jira/browse/HADOOP-19481?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18020089#comment-18020089
]
ASF GitHub Bot commented on HADOOP-19481:
-----------------------------------------
github-actions[bot] closed pull request #7473: HADOOP-19481 Upgrade to
com.google.guava 32.1.3-jre to fix security issues
URL: https://github.com/apache/hadoop/pull/7473
> Upgrade to com.google.guava 32.1.3-jre to fix CVE-2023-2976 and CVE-2020-8908
> -----------------------------------------------------------------------------
>
> Key: HADOOP-19481
> URL: https://issues.apache.org/jira/browse/HADOOP-19481
> Project: Hadoop Common
> Issue Type: Task
> Reporter: Bartosz Kosiorek
> Priority: Major
> Labels: pull-request-available
>
> Upgrade com.google.guava library to 32.1.3-jre to fix:
> * [CVE-2023-2976|https://github.com/advisories/GHSA-7g45-4rm6-3mm3]
> * [CVE-2020-8908|https://github.com/advisories/GHSA-5mg8-w23w-74h3]
> Link to PR:
> [https://github.com/apache/hadoop/pull/7473]
>
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
