You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by "Dongjin Lee (Jira)" <ji...@apache.org> on 2020/10/09 09:23:00 UTC

[jira] [Resolved] (KAFKA-10591) kafka_2.13-2.6.0 vulnerabilities

     [ https://issues.apache.org/jira/browse/KAFKA-10591?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Dongjin Lee resolved KAFKA-10591.
---------------------------------
    Resolution: Duplicate

See: [KAFKA-9366|http://https://issues.apache.org/jira/browse/KAFKA-9366]

> kafka_2.13-2.6.0 vulnerabilities
> --------------------------------
>
>                 Key: KAFKA-10591
>                 URL: https://issues.apache.org/jira/browse/KAFKA-10591
>             Project: Kafka
>          Issue Type: Bug
>    Affects Versions: 2.6.0
>            Reporter: Manvindar
>            Priority: Major
>              Labels: vulnerabilities
>         Attachments: kafka.png
>
>
> I scanned Kafka image in Anchore and got few vulnerabilities, is there a fix for them or its is false positive? 
> Two of them are in log4j-1.2.17, can we bump it to version 2?
>  
> !kafka.png!



--
This message was sent by Atlassian Jira
(v8.3.4#803005)