You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ambari.apache.org by "Nitiraj Singh Rathore (JIRA)" <ji...@apache.org> on 2018/01/23 16:01:00 UTC

[jira] [Created] (AMBARI-22833) java deserialization vulnerability for commons-collections-3.2.1.jar being used by ambari views.

Nitiraj Singh Rathore created AMBARI-22833:
----------------------------------------------

             Summary: java deserialization vulnerability for commons-collections-3.2.1.jar being used by ambari views.
                 Key: AMBARI-22833
                 URL: https://issues.apache.org/jira/browse/AMBARI-22833
             Project: Ambari
          Issue Type: Bug
          Components: ambari-views
    Affects Versions: 2.5.0
            Reporter: Nitiraj Singh Rathore
            Assignee: Nitiraj Singh Rathore
             Fix For: 2.5.3


This library should be replaced by newer version of commons-collection or atleast 2.3.2, should be used.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)