You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@pulsar.apache.org by GitBox <gi...@apache.org> on 2022/05/19 07:44:39 UTC

[GitHub] [pulsar] nicoloboschi opened a new pull request, #15660: [fix][security] Tiered storage: Upgrade Hadoop to 3.3.3 to get rid of CVE-2022-26612

nicoloboschi opened a new pull request, #15660:
URL: https://github.com/apache/pulsar/pull/15660

   ### Motivation
   Hadoop versions < 3.3.3 are vulnerable to [CVE-2022-26612](https://nvd.nist.gov/vuln/detail/CVE-2022-26612) which has a CVSS score of 9.8
   
   3.3.3 has been released yesterday and it contains the fix
   See https://issues.apache.org/jira/browse/HADOOP-18198 for more details
   
   ### Modifications
   
   * Upgrade from 3.3.1 to 3.3.3 
   
   - [x] `no-need-doc` 


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [pulsar] nicoloboschi merged pull request #15660: [fix][security] Tiered storage: Upgrade Hadoop to 3.3.3 to get rid of CVE-2022-26612

Posted by GitBox <gi...@apache.org>.

nicoloboschi merged PR #15660:
URL: https://github.com/apache/pulsar/pull/15660


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [pulsar] nicoloboschi closed pull request #15660: [fix][security] Tiered storage: Upgrade Hadoop to 3.3.3 to get rid of CVE-2022-26612

Posted by GitBox <gi...@apache.org>.

nicoloboschi closed pull request #15660: [fix][security] Tiered storage: Upgrade Hadoop to 3.3.3 to get rid of CVE-2022-26612
URL: https://github.com/apache/pulsar/pull/15660


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [pulsar] nicoloboschi commented on pull request #15660: [fix][security] Tiered storage: Upgrade Hadoop to 3.3.3 to get rid of CVE-2022-26612

Posted by GitBox <gi...@apache.org>.

nicoloboschi commented on PR #15660:
URL: https://github.com/apache/pulsar/pull/15660#issuecomment-1132720095

   /pulsarbot rerun-failure-checks


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@pulsar.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org