You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@spark.apache.org by "Kousuke Saruta (Jira)" <ji...@apache.org> on 2020/05/20 02:51:00 UTC

[jira] [Created] (SPARK-31765) Upgrade HtmlUnit >= 2.37.0

Kousuke Saruta created SPARK-31765:
--------------------------------------

             Summary: Upgrade HtmlUnit >= 2.37.0
                 Key: SPARK-31765
                 URL: https://issues.apache.org/jira/browse/SPARK-31765
             Project: Spark
          Issue Type: Improvement
          Components: Web UI
    Affects Versions: 3.1.0
            Reporter: Kousuke Saruta
            Assignee: Kousuke Saruta


Recently, a security issue which affects HtmlUnit is reported.

[https://nvd.nist.gov/vuln/detail/CVE-2020-5529]

According to the report, arbitrary code can be run by malicious users.

HtmlUnit is used for test so the impact might not be large but it's better to upgrade it just in case.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org