[ https://issues.apache.org/jira/browse/HIVE-25802?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Sylwester Lachiewicz resolved HIVE-25802. ----------------------------------------- Resolution: Fixed > Log4j2 Vulnerability in Hive Storage API > ---------------------------------------- > > Key: HIVE-25802 > URL: https://issues.apache.org/jira/browse/HIVE-25802 > Project: Hive > Issue Type: Bug > Components: storage-api > Affects Versions: 4.0.0 > Reporter: Nikhil Gupta > Priority: Major > Fix For: 4.0.0 > > > Storage API also brings in log4j2 dependency <= 2.14.1 that can still expose > a vulnerability in hive -- This message was sent by Atlassian Jira (v8.20.7#820007)