You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2022/09/27 03:01:00 UTC

[jira] [Work logged] (HIVE-26568) Upgrade Log4j2 to 2.18.0 due to CVEs

     [ https://issues.apache.org/jira/browse/HIVE-26568?focusedWorklogId=812330&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-812330 ]

ASF GitHub Bot logged work on HIVE-26568:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 27/Sep/22 03:00
            Start Date: 27/Sep/22 03:00
    Worklog Time Spent: 10m 
      Work Description: nrg4878 opened a new pull request, #3623:
URL: https://github.com/apache/hive/pull/3623

   ### Why are the changes needed?
   CVEs
   
   ### Does this PR introduce _any_ user-facing change?
   No
   
   ### How was this patch tested?
   Unit tests




Issue Time Tracking
-------------------

            Worklog Id:     (was: 812330)
    Remaining Estimate: 0h
            Time Spent: 10m

> Upgrade Log4j2 to 2.18.0 due to CVEs
> ------------------------------------
>
>                 Key: HIVE-26568
>                 URL: https://issues.apache.org/jira/browse/HIVE-26568
>             Project: Hive
>          Issue Type: Bug
>    Affects Versions: 3.1.2
>            Reporter: Naveen Gangam
>            Assignee: Naveen Gangam
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> High security vulnerability in Log4J - CVE-2021-44832 bundled with Hive



--
This message was sent by Atlassian Jira
(v8.20.10#820010)