[jira] [Updated] (TEZ-4560) Upgrade bouncycastle to 1.77 due to CVE.

[ https://issues.apache.org/jira/browse/TEZ-4560?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4560: Description: There are 2 CVE issues in bcprov-jdk15on, CVE-2023-33202 and CVE-2023-33201. We can find more

[jira] [Created] (TEZ-4560) Upgrade bouncycastle to 1.77 due to CVE.

Shilun Fan created TEZ-4560: --- Summary: Upgrade bouncycastle to 1.77 due to CVE. Key: TEZ-4560 URL: https://issues.apache.org/jira/browse/TEZ-4560 Project: Apache Tez Issue Type: Improvement

[jira] [Updated] (TEZ-4552) Upgrade protobuf to 3.24.4 due to CVE.

[ https://issues.apache.org/jira/browse/TEZ-4552?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4552: Summary: Upgrade protobuf to 3.24.4 due to CVE. (was: Upgrade protobuf to 3.23.4. ) > Upgrade protobuf to

[jira] [Updated] (TEZ-4552) Upgrade protobuf to 3.24.4 due to CVE.

[ https://issues.apache.org/jira/browse/TEZ-4552?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4552: Description: I found that there are 3 CVE issues that we need to deal with. These CVE issues are related to

[jira] [Updated] (TEZ-4551) Upgrade commons-io to 2.16.0.

[ https://issues.apache.org/jira/browse/TEZ-4551?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4551: Description: We are currently using commons-io version 2.8.0, which is an older version (Sep 09, 2020).

[jira] [Assigned] (TEZ-4551) Upgrade commons-io to 2.16.0.

[ https://issues.apache.org/jira/browse/TEZ-4551?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan reassigned TEZ-4551: --- Assignee: Shilun Fan > Upgrade commons-io to 2.16.0. > -- > >

[jira] [Created] (TEZ-4552) Upgrade protobuf to 3.23.4.

Shilun Fan created TEZ-4552: --- Summary: Upgrade protobuf to 3.23.4. Key: TEZ-4552 URL: https://issues.apache.org/jira/browse/TEZ-4552 Project: Apache Tez Issue Type: Improvement

[jira] [Updated] (TEZ-4551) Upgrade commons-io to 2.16.0.

[ https://issues.apache.org/jira/browse/TEZ-4551?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4551: Issue Type: Improvement (was: Bug) > Upgrade commons-io to 2.16.0. > -- > >

[jira] [Created] (TEZ-4551) Upgrade commons-io to 2.16.0.

Shilun Fan created TEZ-4551: --- Summary: Upgrade commons-io to 2.16.0. Key: TEZ-4551 URL: https://issues.apache.org/jira/browse/TEZ-4551 Project: Apache Tez Issue Type: Bug Reporter:

[jira] [Updated] (TEZ-4550) Upgrade commons-cli to 1.6.0

[ https://issues.apache.org/jira/browse/TEZ-4550?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4550: Issue Type: Improvement (was: Bug) > Upgrade commons-cli to 1.6.0 > > >

[jira] [Created] (TEZ-4550) Upgrade commons-cli to 1.6.0

Shilun Fan created TEZ-4550: --- Summary: Upgrade commons-cli to 1.6.0 Key: TEZ-4550 URL: https://issues.apache.org/jira/browse/TEZ-4550 Project: Apache Tez Issue Type: Bug Reporter:

[jira] [Reopened] (TEZ-4549) Upgrade Hadoop Version to 3.4.0

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan reopened TEZ-4549: - hadoop has been upgraded to 3.4.0, try to upgrade hadoop to 3.4.0 > Upgrade Hadoop Version to 3.4.0 >

[jira] [Updated] (TEZ-4549) Upgrade Hadoop Version to 3.4.0

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4549: Description: hadoop has been upgraded to 3.4.0, try to upgrade hadoop to 3.4.0 > Upgrade Hadoop Version to

[jira] [Updated] (TEZ-4549) Upgrade Hadoop Version to 3.4.0

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4549: Description: (was: We know that Junit 4.11 has a CVE-2020-15250 issue. Try upgrading to 4.13.2 to solve

[jira] [Updated] (TEZ-4549) Upgrade Hadoop Version to 3.4.0

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4549: Summary: Upgrade Hadoop Version to 3.4.0 (was: Update junit to 4.13.2 to address CVE-2020-15250) > Upgrade

[jira] [Updated] (TEZ-4549) Upgrade Hadoop Version to 3.4.0

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4549: Affects Version/s: 0.10.4 (was: 0.10.3) > Upgrade Hadoop Version to 3.4.0 >

[jira] [Resolved] (TEZ-4549) Update junit to 4.13.2 to address CVE-2020-15250

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan resolved TEZ-4549. - Resolution: Duplicate > Update junit to 4.13.2 to address CVE-2020-15250 >

[jira] [Updated] (TEZ-4549) Update junit to 4.13.2 to address CVE-2020-15250

[ https://issues.apache.org/jira/browse/TEZ-4549?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Shilun Fan updated TEZ-4549: Affects Version/s: 0.10.3 > Update junit to 4.13.2 to address CVE-2020-15250 >

[jira] [Created] (TEZ-4549) Update junit to 4.13.2 to address CVE-2020-15250

Shilun Fan created TEZ-4549: --- Summary: Update junit to 4.13.2 to address CVE-2020-15250 Key: TEZ-4549 URL: https://issues.apache.org/jira/browse/TEZ-4549 Project: Apache Tez Issue Type: