You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2022/06/14 14:42:00 UTC

[jira] [Commented] (NIFI-10090) Update Guava JRE

    [ https://issues.apache.org/jira/browse/NIFI-10090?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17554136#comment-17554136 ] 

ASF subversion and git services commented on NIFI-10090:
--------------------------------------------------------

Commit f08c971a89654bae0be7a7807076c8c7393bab7a in nifi's branch refs/heads/main from mr1716
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=f08c971a89 ]

NIFI-10090 Upgraded to Guava 31.1 in Toolkit and Registry

This closes #6120

Signed-off-by: David Handermann <ex...@apache.org>


> Update Guava JRE
> ----------------
>
>                 Key: NIFI-10090
>                 URL: https://issues.apache.org/jira/browse/NIFI-10090
>             Project: Apache NiFi
>          Issue Type: Bug
>    Affects Versions: 1.16.1, 1.16.2
>            Reporter: Mike R
>            Priority: Minor
>          Time Spent: 1h 20m
>  Remaining Estimate: 0h
>
> The version of guava used is vulnerable to CVE 2020-8908.
> Current version of Guava is 28, located at /nifi-toolkit/lib/guava-28.0-jre.jar. The update can be found at github.com/google/guava/releases



--
This message was sent by Atlassian Jira
(v8.20.7#820007)