You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@flink.apache.org by "Chesnay Schepler (JIRA)" <ji...@apache.org> on 2019/01/09 10:06:00 UTC

[jira] [Closed] (FLINK-11207) Update Apache commons-compress from 1.4.1 to 1.18

     [ https://issues.apache.org/jira/browse/FLINK-11207?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Chesnay Schepler closed FLINK-11207.
------------------------------------
       Resolution: Fixed
    Fix Version/s: 1.8.0
                   1.7.2
                   1.6.4

master: f817537f51d09ac618138e0d3aecf015bb22b55b
1.7: d209ed356978d04bc0bd426877fae20bfb455b8c
1.6: 93c13f4b603aae37cb90c04787ad7e4207ca7df8

> Update Apache commons-compress from 1.4.1 to 1.18
> -------------------------------------------------
>
>                 Key: FLINK-11207
>                 URL: https://issues.apache.org/jira/browse/FLINK-11207
>             Project: Flink
>          Issue Type: Bug
>          Components: Core
>    Affects Versions: 1.5.5, 1.6.2, 1.7.0, 1.8.0
>            Reporter: Nico Kruber
>            Assignee: Nico Kruber
>            Priority: Blocker
>              Labels: pull-request-available
>             Fix For: 1.6.4, 1.7.2, 1.8.0
>
>          Time Spent: 20m
>  Remaining Estimate: 0h
>
> There is at least one security vulnerability in the current version that we should address by upgrading to 1.18+:
> https://app.snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-32473



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)