[jira] [Updated] (SPARK-38291) CVE-2022-21724 and GHSA-673j-qm5f-xpv8

Jira Tue, 22 Feb 2022 10:53:05 -0800


     [ 
https://issues.apache.org/jira/browse/SPARK-38291?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Bjørn Jørgensen updated SPARK-38291:
------------------------------------
    Summary: CVE-2022-21724 and GHSA-673j-qm5f-xpv8  (was: Upgrade postgresql 
from 42.3.0 to 42.3.3)

> CVE-2022-21724 and GHSA-673j-qm5f-xpv8
> --------------------------------------
>
>                 Key: SPARK-38291
>                 URL: https://issues.apache.org/jira/browse/SPARK-38291
>             Project: Spark
>          Issue Type: Bug
>          Components: Build
>    Affects Versions: 3.3.0
>            Reporter: Bjørn Jørgensen
>            Priority: Major
>
> postgresql 42.3.0 has two security issues.  
> [CVE-2022-21724|https://nvd.nist.gov/vuln/detail/CVE-2022-21724] 
> and 
> [Arbitrary File Write 
> Vulnerability|https://github.com/advisories/GHSA-673j-qm5f-xpv8]
> By upgrading postgresql from 42.3.0 to 42.3.3 we will resolve these issues. 



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org
For additional commands, e-mail: issues-h...@spark.apache.org

[jira] [Updated] (SPARK-38291) CVE-2022-21724 and GHSA-673j-qm5f-xpv8

Reply via email to