[jira] [Work logged] (HIVE-25726) Upgrade velocity to 2.3 due to CVE-2020-13936

["ASF GitHub Bot (Jira)" <ji...@apache.org>]

     [ https://issues.apache.org/jira/browse/HIVE-25726?focusedWorklogId=696498&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-696498 ]

ASF GitHub Bot logged work on HIVE-25726:
-----------------------------------------

                Author: ASF GitHub Bot
            Created on: 15/Dec/21 10:03
            Start Date: 15/Dec/21 10:03
    Worklog Time Spent: 10m 
      Work Description: sourabh912 commented on pull request #2805:
URL: https://github.com/apache/hive/pull/2805#issuecomment-994614104


   @kgyrtkirk @nrg4878 : Please review and provide your feedback.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: gitbox-unsubscribe@hive.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


Issue Time Tracking
-------------------

    Worklog Id:     (was: 696498)
    Time Spent: 40m  (was: 0.5h)

> Upgrade velocity to 2.3 due to CVE-2020-13936
> ---------------------------------------------
>
>                 Key: HIVE-25726
>                 URL: https://issues.apache.org/jira/browse/HIVE-25726
>             Project: Hive
>          Issue Type: Task
>            Reporter: Sourabh Goyal
>            Assignee: Sourabh Goyal
>            Priority: Major
>              Labels: pull-request-available
>          Time Spent: 40m
>  Remaining Estimate: 0h
>
> Velocity project announced CVE-2020-13936 on 20210309 and through NVD 20210317 to get detected internally.
>  * [https://nvd.nist.gov/vuln/detail/CVE-2020-13936]
>  * [http://velocity.apache.org/news.html]



--
This message was sent by Atlassian Jira
(v8.20.1#820001)