spark-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bozhidar Bozhanov (JIRA)" <j...@apache.org>
Subject [jira] [Created] (SPARK-28255) Upgrade dependencies with vulnerabilities
Date Fri, 05 Jul 2019 05:17:00 GMT
Bozhidar Bozhanov created SPARK-28255:
-----------------------------------------

             Summary: Upgrade dependencies with vulnerabilities
                 Key: SPARK-28255
                 URL: https://issues.apache.org/jira/browse/SPARK-28255
             Project: Spark
          Issue Type: Bug
          Components: Spark Core
    Affects Versions: 3.0.0
            Reporter: Bozhidar Bozhanov


There are severe vulnerabilities in two dependencies:

 
[ERROR] hadoop-mapreduce-client-core-2.7.3.jar: CVE-2018-8029, CVE-2016-6811[ERROR] py4j-0.10.8.1.jar:
CVE-2016-5636, CVE-2008-1887



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org


Mime
View raw message