You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@flink.apache.org by "Chesnay Schepler (JIRA)" <ji...@apache.org> on 2019/01/09 10:06:00 UTC
[jira] [Closed] (FLINK-11207) Update Apache commons-compress from
1.4.1 to 1.18
[ https://issues.apache.org/jira/browse/FLINK-11207?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Chesnay Schepler closed FLINK-11207.
------------------------------------
Resolution: Fixed
Fix Version/s: 1.8.0
1.7.2
1.6.4
master: f817537f51d09ac618138e0d3aecf015bb22b55b
1.7: d209ed356978d04bc0bd426877fae20bfb455b8c
1.6: 93c13f4b603aae37cb90c04787ad7e4207ca7df8
> Update Apache commons-compress from 1.4.1 to 1.18
> -------------------------------------------------
>
> Key: FLINK-11207
> URL: https://issues.apache.org/jira/browse/FLINK-11207
> Project: Flink
> Issue Type: Bug
> Components: Core
> Affects Versions: 1.5.5, 1.6.2, 1.7.0, 1.8.0
> Reporter: Nico Kruber
> Assignee: Nico Kruber
> Priority: Blocker
> Labels: pull-request-available
> Fix For: 1.6.4, 1.7.2, 1.8.0
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> There is at least one security vulnerability in the current version that we should address by upgrading to 1.18+:
> https://app.snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-32473
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)