You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@oozie.apache.org by "Andras Salamon (JIRA)" <ji...@apache.org> on 2019/08/01 08:11:00 UTC

[jira] [Commented] (OOZIE-3418) Upgrade to Guava 27

    [ https://issues.apache.org/jira/browse/OOZIE-3418?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16897861#comment-16897861 ] 

Andras Salamon commented on OOZIE-3418:
---------------------------------------

In the meantime Guava 28.0 has been released.

> Upgrade to Guava 27
> -------------------
>
>                 Key: OOZIE-3418
>                 URL: https://issues.apache.org/jira/browse/OOZIE-3418
>             Project: Oozie
>          Issue Type: Bug
>    Affects Versions: 5.1.0
>            Reporter: Andras Salamon
>            Assignee: Andras Salamon
>            Priority: Major
>         Attachments: OOZIE-3418-01-WIP.patch
>
>
> There is a guava security issue: [CVE-2018-10237|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10237]
> Currently we use Guava 11.0.2 which is affected. We need to upgrade to at least guava 24.1.1. Probably the best would be to use Guava 27.



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)