You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-commits@hadoop.apache.org by ad...@apache.org on 2022/11/02 07:41:36 UTC
[hadoop] branch trunk updated: HADOOP-18484. Upgrade hsqldb to v2.7.1 to mitigate CVE-2022-41853 (#4991)
This is an automated email from the ASF dual-hosted git repository.
adoroszlai pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/hadoop.git
The following commit(s) were added to refs/heads/trunk by this push:
new e62ba16a02f HADOOP-18484. Upgrade hsqldb to v2.7.1 to mitigate CVE-2022-41853 (#4991)
e62ba16a02f is described below
commit e62ba16a02f8f325eff06b932de89e986335a5e1
Author: Ashutosh Gupta <as...@st.niituniversity.in>
AuthorDate: Wed Nov 2 07:41:27 2022 +0000
HADOOP-18484. Upgrade hsqldb to v2.7.1 to mitigate CVE-2022-41853 (#4991)
---
LICENSE-binary | 2 +-
.../hadoop-mapreduce-client/hadoop-mapreduce-client-jobclient/pom.xml | 1 +
hadoop-mapreduce-project/hadoop-mapreduce-examples/pom.xml | 1 +
hadoop-mapreduce-project/pom.xml | 1 +
hadoop-project/pom.xml | 3 ++-
.../hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-common/pom.xml | 1 +
6 files changed, 7 insertions(+), 2 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 4ff1eaf14cb..d838ac1cb6a 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -523,7 +523,7 @@ junit:junit:4.13.2
HSQL License
------------
-org.hsqldb:hsqldb:2.5.2
+org.hsqldb:hsqldb:2.7.1
JDOM License
diff --git a/hadoop-mapreduce-project/hadoop-mapreduce-client/hadoop-mapreduce-client-jobclient/pom.xml b/hadoop-mapreduce-project/hadoop-mapreduce-client/hadoop-mapreduce-client-jobclient/pom.xml
index 75f250e1d72..17358a37da3 100644
--- a/hadoop-mapreduce-project/hadoop-mapreduce-client/hadoop-mapreduce-client-jobclient/pom.xml
+++ b/hadoop-mapreduce-project/hadoop-mapreduce-client/hadoop-mapreduce-client-jobclient/pom.xml
@@ -110,6 +110,7 @@
<groupId>org.hsqldb</groupId>
<artifactId>hsqldb</artifactId>
<scope>test</scope>
+ <classifier>jdk8</classifier>
</dependency>
<!-- 'mvn dependency:analyze' fails to detect use of this dependency -->
<dependency>
diff --git a/hadoop-mapreduce-project/hadoop-mapreduce-examples/pom.xml b/hadoop-mapreduce-project/hadoop-mapreduce-examples/pom.xml
index 11932e04e37..16ce47579fe 100644
--- a/hadoop-mapreduce-project/hadoop-mapreduce-examples/pom.xml
+++ b/hadoop-mapreduce-project/hadoop-mapreduce-examples/pom.xml
@@ -112,6 +112,7 @@
<groupId>org.hsqldb</groupId>
<artifactId>hsqldb</artifactId>
<scope>provided</scope>
+ <classifier>jdk8</classifier>
</dependency>
<dependency>
<groupId>org.apache.hadoop.thirdparty</groupId>
diff --git a/hadoop-mapreduce-project/pom.xml b/hadoop-mapreduce-project/pom.xml
index 3ce66a10a84..b32f1575636 100644
--- a/hadoop-mapreduce-project/pom.xml
+++ b/hadoop-mapreduce-project/pom.xml
@@ -146,6 +146,7 @@
<groupId>org.hsqldb</groupId>
<artifactId>hsqldb</artifactId>
<scope>compile</scope>
+ <classifier>jdk8</classifier>
</dependency>
<dependency>
<groupId>${leveldbjni.group}</groupId>
diff --git a/hadoop-project/pom.xml b/hadoop-project/pom.xml
index 6477e8f662c..e37851b6d07 100644
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@@ -185,7 +185,7 @@
<make-maven-plugin.version>1.0-beta-1</make-maven-plugin.version>
<surefire.fork.timeout>900</surefire.fork.timeout>
<aws-java-sdk.version>1.12.316</aws-java-sdk.version>
- <hsqldb.version>2.5.2</hsqldb.version>
+ <hsqldb.version>2.7.1</hsqldb.version>
<frontend-maven-plugin.version>1.11.2</frontend-maven-plugin.version>
<jasmine-maven-plugin.version>2.1</jasmine-maven-plugin.version>
<phantomjs-maven-plugin.version>0.7</phantomjs-maven-plugin.version>
@@ -1470,6 +1470,7 @@
<groupId>org.hsqldb</groupId>
<artifactId>hsqldb</artifactId>
<version>${hsqldb.version}</version>
+ <classifier>jdk8</classifier>
</dependency>
<dependency>
<groupId>io.dropwizard.metrics</groupId>
diff --git a/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-common/pom.xml b/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-common/pom.xml
index fdc36667bfe..6837de80014 100644
--- a/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-common/pom.xml
+++ b/hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-common/pom.xml
@@ -144,6 +144,7 @@
<groupId>org.hsqldb</groupId>
<artifactId>hsqldb</artifactId>
<scope>test</scope>
+ <classifier>jdk8</classifier>
</dependency>
<dependency>
<groupId>com.microsoft.sqlserver</groupId>
---------------------------------------------------------------------
To unsubscribe, e-mail: common-commits-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-commits-help@hadoop.apache.org