[ https://issues.apache.org/jira/browse/SPARK-38925?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sean R. Owen resolved SPARK-38925. ---------------------------------- Fix Version/s: (was: 3.4.0) Resolution: Won't Fix > update guava to 30.1.1-jre > -------------------------- > > Key: SPARK-38925 > URL: https://issues.apache.org/jira/browse/SPARK-38925 > Project: Spark > Issue Type: Improvement > Components: Build > Affects Versions: 3.0.0, 3.0.1, 3.0.2, 3.1.0, 3.1.1, 3.1.2, 3.2.0, 3.2.1 > Reporter: qian > Assignee: Apache Spark > Priority: Major > > Update guava to 30.1.1-jre > guava 14.0.1 has risk: > * > [CVE-2020-8908|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8908] > * > [CVE-2018-10237|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10237] > -- This message was sent by Atlassian Jira (v8.20.7#820007) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org