[ https://issues.apache.org/jira/browse/HIVE-25920?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17486409#comment-17486409 ]
Ayush Saxena commented on HIVE-25920: ------------------------------------- Merged to master. Thanx [~tasanuma] for the contribution!!! > Bump Xerce2 to 2.12.2 > --------------------- > > Key: HIVE-25920 > URL: https://issues.apache.org/jira/browse/HIVE-25920 > Project: Hive > Issue Type: Task > Reporter: Takanobu Asanuma > Assignee: Takanobu Asanuma > Priority: Major > Labels: pull-request-available > Time Spent: 0.5h > Remaining Estimate: 0h > > Xerce 2.12.1 has high-level vulnerabilities. > * [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23437] -- This message was sent by Atlassian Jira (v8.20.1#820001)