[ https://issues.apache.org/jira/browse/HADOOP-18468?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17609256#comment-17609256 ]
ASF GitHub Bot commented on HADOOP-18468: ----------------------------------------- slfan1989 commented on PR #4937: URL: https://github.com/apache/hadoop/pull/4937#issuecomment-1257286068 > @slfan1989 I added a link to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40149 Thank you very much. > upgrade jettison json jar due to security issue > ----------------------------------------------- > > Key: HADOOP-18468 > URL: https://issues.apache.org/jira/browse/HADOOP-18468 > Project: Hadoop Common > Issue Type: Improvement > Reporter: PJ Fanning > Priority: Major > Labels: pull-request-available > > A fix for [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40149] > > [https://github.com/jettison-json/jettison/releases/tag/jettison-1.5.1] > [https://github.com/advisories/GHSA-56h3-78gp-v83r] -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: common-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: common-issues-h...@hadoop.apache.org