[ https://issues.apache.org/jira/browse/SPARK-37883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Hyukjin Kwon updated SPARK-37883: --------------------------------- Priority: Major (was: Blocker) > log4j update to 2.17.1 in spark-core 3.2 > ---------------------------------------- > > Key: SPARK-37883 > URL: https://issues.apache.org/jira/browse/SPARK-37883 > Project: Spark > Issue Type: Bug > Components: Security, Spark Core > Affects Versions: 3.2.0 > Reporter: Setu Agrawal > Priority: Major > Labels: > https://mvnrepository.com/artifact/org.apache.spark/spark-core_2.12/3.2.0 > > We are using spark-core jar file, as below > libraryDependencies += "org.apache.spark" %% "spark-core" % "3.2.0" > as per maven repository it usgaes log4j older version, which need to be > updated latest(2.17.1) to fix security vulenrability, please help us, how we > can get update version spark-core, which usages latest updated log4j. > Thanks > > > -- This message was sent by Atlassian Jira (v8.20.1#820001) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org