You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@flume.apache.org by "Tristan Stevens (Jira)" <ji...@apache.org> on 2019/09/30 12:16:00 UTC
[jira] [Comment Edited] (FLUME-3339) Xerces-J should be upgraded to
2.12.0
[ https://issues.apache.org/jira/browse/FLUME-3339?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16940902#comment-16940902 ]
Tristan Stevens edited comment on FLUME-3339 at 9/30/19 12:15 PM:
------------------------------------------------------------------
We can update this with no problems. Given that the scope is provided I suggest we remove this and Xalan
was (Author: tmgstev):
We can update this with no problems, but actually it isn't used by Flume anymore. I wonder whether we should just remove it, or could that break users?
> Xerces-J should be upgraded to 2.12.0
> -------------------------------------
>
> Key: FLUME-3339
> URL: https://issues.apache.org/jira/browse/FLUME-3339
> Project: Flume
> Issue Type: Dependency upgrade
> Affects Versions: 1.9.0
> Reporter: Chadi
> Assignee: Tristan Stevens
> Priority: Major
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Xerces-J 2.9.1 has security vulnerabilities, and should be upgraded to the latest 2.12.0.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@flume.apache.org
For additional commands, e-mail: issues-help@flume.apache.org