[ https://issues.apache.org/jira/browse/SPARK-38291?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Bjørn Jørgensen updated SPARK-38291: ------------------------------------ Summary: CVE-2022-21724 and GHSA-673j-qm5f-xpv8 (was: Upgrade postgresql from 42.3.0 to 42.3.3) > CVE-2022-21724 and GHSA-673j-qm5f-xpv8 > -------------------------------------- > > Key: SPARK-38291 > URL: https://issues.apache.org/jira/browse/SPARK-38291 > Project: Spark > Issue Type: Bug > Components: Build > Affects Versions: 3.3.0 > Reporter: Bjørn Jørgensen > Priority: Major > > postgresql 42.3.0 has two security issues. > [CVE-2022-21724|https://nvd.nist.gov/vuln/detail/CVE-2022-21724] > and > [Arbitrary File Write > Vulnerability|https://github.com/advisories/GHSA-673j-qm5f-xpv8] > By upgrading postgresql from 42.3.0 to 42.3.3 we will resolve these issues. -- This message was sent by Atlassian Jira (v8.20.1#820001) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org