[ https://issues.apache.org/jira/browse/HIVE-24816?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Naveen Gangam updated HIVE-24816: --------------------------------- Labels: pull-request-available release-3.1.3 (was: pull-request-available) > Upgrade jackson to 2.10.5.1 or 2.11.0+ due to CVE-2020-25649 > ------------------------------------------------------------ > > Key: HIVE-24816 > URL: https://issues.apache.org/jira/browse/HIVE-24816 > Project: Hive > Issue Type: Bug > Components: HiveServer2 > Reporter: Sai Hemanth Gantasala > Assignee: Sai Hemanth Gantasala > Priority: Major > Labels: pull-request-available, release-3.1.3 > Fix For: 4.0.0 > > Time Spent: 1h > Remaining Estimate: 0h > > Currently, hive is pulling Jackson 2.10.5 version jar. Please upgrade to > 2.10.5.1 or 2.11.0+ due to CVE-2020-25649. -- This message was sent by Atlassian Jira (v8.20.1#820001)