You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@kafka.apache.org by JIAHAO ZHOU <ji...@gmail.com> on 2019/01/31 05:25:52 UTC

Guava Version Upgrade

Hello,
We are currently using kafka1.1.1 and planning to upgrade to kafka2.0,
I noticed all of them are using guava-20.0.jar which has a security
vulnerability right now. Could you update the guava version to 24.1.1
or higher to fix it, please? Link to the guava vulnerability:
https://github.com/google/guava/wiki/CVE-2018-10237

Regards