You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@zeppelin.apache.org by "Shefali Singh (Jira)" <ji...@apache.org> on 2023/06/13 05:57:00 UTC
[jira] [Created] (ZEPPELIN-5930) Upgrade ivy from 2.4.0 to 2.5.1 due to CVE-2022-37865, CVE-2022-37866
Shefali Singh created ZEPPELIN-5930:
---------------------------------------
Summary: Upgrade ivy from 2.4.0 to 2.5.1 due to CVE-2022-37865, CVE-2022-37866
Key: ZEPPELIN-5930
URL: https://issues.apache.org/jira/browse/ZEPPELIN-5930
Project: Zeppelin
Issue Type: Improvement
Reporter: Shefali Singh
[CVE - CVE-2022-37865 (mitre.org)|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37865]
[CVE - CVE-2022-37866 (mitre.org)|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37866]
Dependabot has opened:
[Bump ivy from 2.4.0 to 2.5.1 in /flink/flink-scala-parent by dependabot[bot] · Pull Request #4508 · apache/zeppelin (github.com)|https://github.com/apache/zeppelin/pull/4508]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)