[
https://issues.apache.org/jira/browse/KYLIN-5770?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17832361#comment-17832361
]
pengfei.zhan commented on KYLIN-5770:
-------------------------------------
CVE-2023-34034 spring-security-config bugfix
Affected releases:
* 6.1.0 to 6.1.1
* 6.0.0 to 6.0.4
* 5.8.0 to 5.8.4
* 5.7.0 to 5.7.9
* 5.6.0 to 5.6.11
{quote}[WARNING] Using Maven 2 dependency tree to get verbose output, which may
be inconsistent with actual Maven 3 resolution
[INFO] org.apache.kylin:kylin-common-booter:jar:5.0.0-SNAPSHOT
[INFO] \- org.apache.kylin:kylin-common-server:jar:5.0.0-SNAPSHOT:compile
[INFO] \- org.apache.kylin:kylin-query-service:jar:5.0.0-SNAPSHOT:compile
[INFO] \- org.apache.kylin:kylin-common-service:jar:5.0.0-SNAPSHOT:compile
[INFO] \- org.springframework.security:spring-security-config:jar:5.7.8:compile
{quote}
> Update spring-security-config from 5.7.8 to 5.7.10
> --------------------------------------------------
>
> Key: KYLIN-5770
> URL: https://issues.apache.org/jira/browse/KYLIN-5770
> Project: Kylin
> Issue Type: Bug
> Components: Query Engine
> Affects Versions: 5.0-beta
> Reporter: pengfei.zhan
> Assignee: pengfei.zhan
> Priority: Major
> Fix For: 5.0.0
>
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
