[jira] [Created] (FLUME-3447) Upgrade commons-text version to fix CVE-2022-42889

Nikita Pande (Jira) Mon, 13 Feb 2023 06:06:38 -0800

Nikita Pande created FLUME-3447:
-----------------------------------

             Summary: Upgrade commons-text version to fix CVE-2022-42889
                 Key: FLUME-3447
                 URL: https://issues.apache.org/jira/browse/FLUME-3447
             Project: Flume
          Issue Type: Improvement
    Affects Versions: 1.11.0
            Reporter: Nikita Pande



Upgrade commons-text version to ensure downstream applications are not at risk 
from CVE-2022-42889.

[https://nvd.nist.gov/vuln/detail/CVE-2022-42889]

The CVE is related to variable expansion through the utility class 
{{{}org.apache.commons.text.lookup.StringLookup{}}}.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@flume.apache.org
For additional commands, e-mail: issues-h...@flume.apache.org

[jira] [Created] (FLUME-3447) Upgrade commons-text version to fix CVE-2022-42889

Reply via email to