[
https://issues.apache.org/jira/browse/AMBARI-25814?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17945201#comment-17945201
]
Wei-Chiu Chuang commented on AMBARI-25814:
------------------------------------------
We need to bump it to the latest, 2.14.0-2.19.0 due to CVE-2024-47554
> upgrade commons-io-2.4.jar to 2.8.0
> -----------------------------------
>
> Key: AMBARI-25814
> URL: https://issues.apache.org/jira/browse/AMBARI-25814
> Project: Ambari
> Issue Type: Story
> Reporter: Ananya Singh
> Assignee: Ananya Singh
> Priority: Major
> Labels: newbie, pull-request-available
>
> |[CVE-2021-29425|http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-29425]|
> upgrade commons-io in ambari- metrics
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
