You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@hadoop.apache.org by Deepti Sharma S <de...@ericsson.com.INVALID> on 2022/10/27 11:44:57 UTC
CVE-2022-42889
Hello Team,
As we have received the vulnerability "CVE-2022-42889". We are using Apache Hadoop common 3pp version 3.3.3 which has transitive dependency of Common text.
Do you have any plans to fix this vulnerability in Hadoop next version and when is the plan?
Regards,
Deepti Sharma
PMP(r) & ITIL
RE: CVE-2022-42889
Posted by Deepti Sharma S <de...@ericsson.com.INVALID>.
Thank you for sharing the link, however when is the plan to release version 3.3.5 which has the fix of this CVE?
Regards,
Deepti Sharma
PMP® & ITIL
From: Wei-Chiu Chuang <we...@apache.org>
Sent: 27 October 2022 21:21
Cc: user@hadoop.apache.org
Subject: Re: CVE-2022-42889
1. HADOOP-18497<https://issues.apache.org/jira/browse/HADOOP-18497>
On Thu, Oct 27, 2022 at 4:45 AM Deepti Sharma S <de...@ericsson.com.invalid>> wrote:
Hello Team,
As we have received the vulnerability “CVE-2022-42889”. We are using Apache Hadoop common 3pp version 3.3.3 which has transitive dependency of Common text.
Do you have any plans to fix this vulnerability in Hadoop next version and when is the plan?
Regards,
Deepti Sharma
PMP® & ITIL
Re: CVE-2022-42889
Posted by Wei-Chiu Chuang <we...@apache.org>.
1. HADOOP-18497 <https://issues.apache.org/jira/browse/HADOOP-18497>
On Thu, Oct 27, 2022 at 4:45 AM Deepti Sharma S
<de...@ericsson.com.invalid> wrote:
> Hello Team,
>
>
>
> As we have received the vulnerability “CVE-2022-42889”. We are using
> Apache Hadoop common 3pp version 3.3.3 which has transitive dependency of
> Common text.
>
>
>
> Do you have any plans to fix this vulnerability in Hadoop next version and
> when is the plan?
>
>
>
>
>
> Regards,
>
> Deepti Sharma
> * PMP® & ITIL*
>
>
>