You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@kylin.apache.org by "Sonu Kumar Singh (Jira)" <ji...@apache.org> on 2021/12/21 09:46:00 UTC

[jira] [Created] (KYLIN-5144) Apache Calcite Avatica is affected from log4j CVE-2021-44228.

Sonu Kumar Singh created KYLIN-5144:
---------------------------------------

             Summary: Apache Calcite Avatica is affected from log4j CVE-2021-44228.
                 Key: KYLIN-5144
                 URL: https://issues.apache.org/jira/browse/KYLIN-5144
             Project: Kylin
          Issue Type: Improvement
          Components: Others
    Affects Versions: v3.1.3
            Reporter: Sonu Kumar Singh
            Assignee: Sonu Kumar Singh
             Fix For: v3.1.4
         Attachments: image-2021-12-21-15-08-37-651.png

As per Apache Blogs (https://blogs.apache.org/security/entry/cve-2021-44228), Apache Calcite Avatica is affected from log4j CVE-2021-44228 and there is a suggestion from the Apache Calcite team to upgrade Apache Calcite Avatica to 1.20.0 (https://lists.apache.org/thread/3vn3j4fmr2dn9s0x1604pdxz7x4fo8wz)

 !image-2021-12-21-15-08-37-651.png|thumbnail! 



--
This message was sent by Atlassian Jira
(v8.20.1#820001)