[ https://issues.apache.org/jira/browse/HADOOP-17649?focusedWorklogId=790389&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-790389 ]
ASF GitHub Bot logged work on HADOOP-17649: ------------------------------------------- Author: ASF GitHub Bot Created on: 13/Jul/22 11:56 Start Date: 13/Jul/22 11:56 Worklog Time Spent: 10m Work Description: ashutoshcipher commented on PR #4539: URL: https://github.com/apache/hadoop/pull/4539#issuecomment-1183129226 @steveloughran - I saw your comments on this PR - https://github.com/apache/hadoop/pull/3029 about running the integration tests for 1. hadoop-aws (Attached results in the PR) 2. hadoop-azure - I dont have account with Azure, Can you suggest someone in community who can helop in running hadoop-azure tests for this upgrade? Let me know if you have any comments for this upgrade. Issue Time Tracking ------------------- Worklog Id: (was: 790389) Time Spent: 3h 10m (was: 3h) > Update wildfly openssl to 2.1.3.Final > ------------------------------------- > > Key: HADOOP-17649 > URL: https://issues.apache.org/jira/browse/HADOOP-17649 > Project: Hadoop Common > Issue Type: Task > Reporter: Wei-Chiu Chuang > Assignee: Ashutosh Gupta > Priority: Major > Labels: pull-request-available > Time Spent: 3h 10m > Remaining Estimate: 0h > > https://nvd.nist.gov/vuln/detail/CVE-2020-25644 > A memory leak flaw was found in WildFly OpenSSL in versions prior to > 1.1.3.Final, where it removes an HTTP session. It may allow the attacker to > cause OOM leading to a denial of service. The highest threat from this > vulnerability is to system availability. -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org