You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@flume.apache.org by "Tristan Stevens (Jira)" <ji...@apache.org> on 2019/09/30 11:49:00 UTC
[jira] [Commented] (FLUME-3339) Xerces-J should be upgraded to
2.12.0
[ https://issues.apache.org/jira/browse/FLUME-3339?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16940902#comment-16940902 ]
Tristan Stevens commented on FLUME-3339:
----------------------------------------
We can update this with no problems, but actually it isn't used by Flume anymore. I wonder whether we should just remove it, or could that break users?
> Xerces-J should be upgraded to 2.12.0
> -------------------------------------
>
> Key: FLUME-3339
> URL: https://issues.apache.org/jira/browse/FLUME-3339
> Project: Flume
> Issue Type: Dependency upgrade
> Affects Versions: 1.9.0
> Reporter: Chadi
> Assignee: Tristan Stevens
> Priority: Major
>
> Xerces-J 2.9.1 has security vulnerabilities, and should be upgraded to the latest 2.12.0.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@flume.apache.org
For additional commands, e-mail: issues-help@flume.apache.org