[jira] [Commented] (DRILL-8520) Update Parquet due to CVE

ASF GitHub Bot (Jira) Tue, 29 Apr 2025 09:49:11 -0700


    [ 
https://issues.apache.org/jira/browse/DRILL-8520?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17948218#comment-17948218
 ]


ASF GitHub Bot commented on DRILL-8520:
---------------------------------------

rymarm commented on code in PR #2984:
URL: https://github.com/apache/drill/pull/2984#discussion_r2066960981


##########
exec/java-exec/src/main/java/org/apache/parquet/hadoop/ParquetColumnChunkPageWriteStore.java:
##########


Review Comment:
   @cgivre I'll help with this — I'm working on it now. The issue isn't due to 
pulling in an older version of Parquet. Instead, it stems from our temporary 
replacement of a few Parquet library class implementations to address specific 
issues. Since the internal API has changed, we now need to update our 
implementations accordingly.
   
   https://issues.apache.org/jira/browse/PARQUET-2026
   https://issues.apache.org/jira/browse/PARQUET-1006





> Update Parquet due to CVE
> -------------------------
>
>                 Key: DRILL-8520
>                 URL: https://issues.apache.org/jira/browse/DRILL-8520
>             Project: Apache Drill
>          Issue Type: Task
>          Components: Storage - Parquet
>    Affects Versions: 1.21.2
>            Reporter: Charles Givre
>            Assignee: Charles Givre
>            Priority: Critical
>             Fix For: 1.21.2
>
>
> This fixes CVE-2025-30065.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (DRILL-8520) Update Parquet due to CVE

Reply via email to