You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@calcite.apache.org by "Julian Hyde (Jira)" <ji...@apache.org> on 2022/08/11 19:19:00 UTC

[jira] [Created] (CALCITE-5232) Upgrade protobuf-java from 3.17.1 to 3.21.5

Julian Hyde created CALCITE-5232:
------------------------------------

             Summary: Upgrade protobuf-java from 3.17.1 to 3.21.5
                 Key: CALCITE-5232
                 URL: https://issues.apache.org/jira/browse/CALCITE-5232
             Project: Calcite
          Issue Type: Bug
            Reporter: Julian Hyde


Upgrade protobuf-java in Calcite and Avatica.

Some scanning tools say that the current version, 3.17.1, is affected by [CVE-2021-22569|https://nvd.nist.gov/vuln/detail/CVE-2021-22569]. It is not, but this upgrade makes those warnings go away.

As for CALCITE-4626, we plan to upgrade both Avatica and Calcite, to keep them on the same protobuf-java version.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)