You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@spark.apache.org by "Wasi (Jira)" <ji...@apache.org> on 2020/08/28 07:56:00 UTC
[jira] [Created] (SPARK-32725) Getting jar vulnerability for
kryo-shaded for 4.0 version
Wasi created SPARK-32725:
----------------------------
Summary: Getting jar vulnerability for kryo-shaded for 4.0 version
Key: SPARK-32725
URL: https://issues.apache.org/jira/browse/SPARK-32725
Project: Spark
Issue Type: Dependency upgrade
Components: Spark Core
Affects Versions: 2.4.0
Reporter: Wasi
We are gettingĀ jar vulnerability for kryo 4.0. Report suggesting to upgrade to 5.x and 5.x doesn't have backward compatibility. By doing upgrade we might need to changeĀ org.apache.spark.serializer.kryoserializer files and corresponding instance file.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org