You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@flink.apache.org by "neal zheng (Jira)" <ji...@apache.org> on 2022/03/01 19:06:00 UTC

[jira] [Created] (FLINK-26438) expat critical vulnerabilities CVE-2021-45960

neal zheng created FLINK-26438:
----------------------------------

             Summary: expat critical vulnerabilities CVE-2021-45960
                 Key: FLINK-26438
                 URL: https://issues.apache.org/jira/browse/FLINK-26438
             Project: Flink
          Issue Type: Bug
          Components: flink-docker
    Affects Versions: 1.14.3
            Reporter: neal zheng


Flink-docker has the CVE-2021-45960 vulnerabilities from the following dependency chain:

OpenJdk11 -> Expat 2.2.10

 
 * [https://security-tracker.debian.org/tracker/CVE-2021-45960]
 * https://snyk.io/test/docker/openjdk%3A11-jre

 



--
This message was sent by Atlassian Jira
(v8.20.1#820001)