Here is my +1 (binding)
Apache ID: morningman
[x] The download link is legal.
[x] The PGP signature is valid.
[x] The source code matches the current release version.
[x] The LICENSE and NOTICE files are correct.
[x] All files carry the necessary protocol header.
[x] The compiled content is not i
Severity: important
Affected versions:
- Apache Doris before 1.2.8
Description:
The authentication method in Apache Doris versions before 2.0.0 was vulnerable
to timing attacks.
Users are recommended to upgrade to version 2.0.0 + or 1.2.8, which fixes this
issue.
Credit:
Andrea Cosentino fr
Hi All,
We are pleased to announce the release of Apache Doris 1.2.8, 2.0.5 and 2.1.0
Apache Doris is a new-generation open-source real-time data warehouse based on
MPP architecture, with easier use and higher performance for big data analytics.
The release is available at:
https://doris.apache
Here is my +1 (binding)
Apache ID: kxiao
[x] The download link is legal.
[x] The PGP signature is valid.
[x] The source code matches the current release version.
[x] The LICENSE and NOTICE files are correct.
[x] All files carry the necessary protocol header.
[x] The compiled content is not includ
