[jira] [Commented] (HADOOP-19148) Update solr from 8.11.2 to 8.11.3 to address CVE-2023-50298

Wed, 15 May 2024 21:39:04 -0700 


    [ 
https://issues.apache.org/jira/browse/HADOOP-19148?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17846806#comment-17846806
 ] 

Viraj Jasani commented on HADOOP-19148:
---------------------------------------

Build is fine, dependency tree looks good (except it has zookeeper-jute 
transitive version coming as 3.6.2 instead of 3.8.4), let me create PR to run 
the whole build with tests.
{code:java}
[INFO] +- org.apache.solr:solr-solrj:jar:8.11.3:compile
[INFO] |  +- com.fasterxml.woodstox:woodstox-core:jar:5.4.0:compile
[INFO] |  +- commons-io:commons-io:jar:2.14.0:compile
[INFO] |  +- commons-lang:commons-lang:jar:2.6:compile
[INFO] |  +- io.netty:netty-buffer:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-codec:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-common:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-handler:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-resolver:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-transport:jar:4.1.100.Final:compile
[INFO] |  +- io.netty:netty-transport-native-epoll:jar:4.1.100.Final:compile
[INFO] |  +- 
io.netty:netty-transport-native-unix-common:jar:4.1.100.Final:compile
[INFO] |  +- org.apache.commons:commons-math3:jar:3.6.1:compile
[INFO] |  +- org.apache.httpcomponents:httpclient:jar:4.5.13:compile
[INFO] |  +- org.apache.httpcomponents:httpcore:jar:4.4.13:compile
[INFO] |  +- org.apache.httpcomponents:httpmime:jar:4.5.13:compile
[INFO] |  +- org.apache.zookeeper:zookeeper:jar:3.8.4:compile
[INFO] |  +- org.apache.zookeeper:zookeeper-jute:jar:3.6.2:compile
[INFO] |  +- org.codehaus.woodstox:stax2-api:jar:4.2.1:compile
...
... {code}

> Update solr from 8.11.2 to 8.11.3 to address CVE-2023-50298
> -----------------------------------------------------------
>
>                 Key: HADOOP-19148
>                 URL: https://issues.apache.org/jira/browse/HADOOP-19148
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: common
>            Reporter: Brahma Reddy Battula
>            Assignee: Viraj Jasani
>            Priority: Major
>
> Update solr from 8.11.2 to 8.11.3 to address CVE-2023-50298



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org
For additional commands, e-mail: common-issues-h...@hadoop.apache.org

Reply via email to