You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@flink.apache.org by "Robert Metzger (Jira)" <ji...@apache.org> on 2020/10/23 12:21:00 UTC

[jira] [Commented] (FLINK-19783) Upgrade mesos to 1.7 or newer

    [ https://issues.apache.org/jira/browse/FLINK-19783?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17219645#comment-17219645 ] 

Robert Metzger commented on FLINK-19783:
----------------------------------------

I'm not 100% sure if we, as a "mesos client" are affected by this as well or not. It seems that Mesos is compiling against 1.7.0.
If we face issues,  the lowest version with a fix seems to be 1.4.2.
Let's see what the CI system reports.

> Upgrade mesos to 1.7 or newer
> -----------------------------
>
>                 Key: FLINK-19783
>                 URL: https://issues.apache.org/jira/browse/FLINK-19783
>             Project: Flink
>          Issue Type: Task
>          Components: Deployment / Mesos
>    Affects Versions: 1.12.0, 1.11.2
>            Reporter: Till Rohrmann
>            Assignee: Robert Metzger
>            Priority: Critical
>             Fix For: 1.12.0, 1.11.3
>
>
> A user reported a dependency vulnerability which affects {{mesos}} [1]. We should upgrade {{mesos}} to {{1.7.0}} or newer.
> [1] https://lists.apache.org/thread.html/r0dd7ff197b2e3bdd80a0326587ca3d0c22e10d1dba17c769d6da7d7a%40%3Cuser.flink.apache.org%3E



--
This message was sent by Atlassian Jira
(v8.3.4#803005)