You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@atlas.apache.org by "Pavel (Jira)" <ji...@apache.org> on 2022/07/12 12:29:00 UTC

[jira] [Created] (ATLAS-4632) Upgrade kafka-clients dependency

Pavel created ATLAS-4632:
----------------------------

             Summary: Upgrade kafka-clients dependency
                 Key: ATLAS-4632
                 URL: https://issues.apache.org/jira/browse/ATLAS-4632
             Project: Atlas
          Issue Type: Improvement
    Affects Versions: 2.2.0, 2.1.0, 3.0.0
            Reporter: Pavel


The org.apache.kafka.kafka-clients dependency used in the Atlas project contains vulnerabilities:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-17196
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-12399
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-38153

The vulnerability description recommends upgrading this dependency to version 2.8.1 or hig



--
This message was sent by Atlassian Jira
(v8.20.10#820010)