You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@zeppelin.apache.org by "Shefali Singh (Jira)" <ji...@apache.org> on 2023/06/13 05:57:00 UTC

[jira] [Created] (ZEPPELIN-5930) Upgrade ivy from 2.4.0 to 2.5.1 due to CVE-2022-37865, CVE-2022-37866

Shefali Singh created ZEPPELIN-5930:
---------------------------------------

             Summary: Upgrade ivy from 2.4.0 to 2.5.1 due to CVE-2022-37865, CVE-2022-37866
                 Key: ZEPPELIN-5930
                 URL: https://issues.apache.org/jira/browse/ZEPPELIN-5930
             Project: Zeppelin
          Issue Type: Improvement
            Reporter: Shefali Singh


[CVE - CVE-2022-37865 (mitre.org)|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37865]

[CVE - CVE-2022-37866 (mitre.org)|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37866]

Dependabot has opened:

[Bump ivy from 2.4.0 to 2.5.1 in /flink/flink-scala-parent by dependabot[bot] · Pull Request #4508 · apache/zeppelin (github.com)|https://github.com/apache/zeppelin/pull/4508]

 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)