You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@drill.apache.org by GitBox <gi...@apache.org> on 2022/04/26 02:27:52 UTC

[GitHub] [drill] ssainz opened a new issue, #2523: CVE-2022-26612 in Hadoop 3.2.2

ssainz opened a new issue, #2523:
URL: https://github.com/apache/drill/issues/2523

   **Describe the bug**
   Could you please help upgrade Hadoop version from 3.2.2 to 3.2.3 so that we avoid [CVE-2022-26612](https://nvd.nist.gov/vuln/detail/CVE-2022-26612#range-7814776)
   
   **To Reproduce**
   Scan Apache Drill 1.19 with black duck or other vulnerability scanner.
   
   **Expected behavior**
   Apache Drill using Hadoop 3.2.3
   
   **Screenshots**
   If applicable, add screenshots to help explain your problem.
   
   **Desktop (please complete the following information):**
    - OS: Any
    - Browser Any
    - Version Any
   
   **Smartphone (please complete the following information):**
    - Device: Any
    - OS: Any
    - Browser Any
    - Version Any
   
   **Additional context**
   Add any other context about the problem here.
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@drill.apache.org.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [drill] cgivre closed issue #2523: Due to CVE-2022-26612 (9.8 critical), upgrade Hadoop from 3.2.2 to 3.2.3

Posted by GitBox <gi...@apache.org>.

cgivre closed issue #2523: Due to CVE-2022-26612 (9.8 critical), upgrade Hadoop from 3.2.2 to 3.2.3
URL: https://github.com/apache/drill/issues/2523


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@drill.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [drill] cgivre commented on issue #2523: Due to CVE-2022-26612 (9.8 critical), upgrade Hadoop from 3.2.2 to 3.2.3

Posted by GitBox <gi...@apache.org>.

cgivre commented on issue #2523:
URL: https://github.com/apache/drill/issues/2523#issuecomment-1115556385

   Fixed in DRILL-8200


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@drill.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org