[HPCC-28684] SparkHadoop should patch Spark3.x with commons 1.10 - HPCC

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Priority: Not specified
Resolution: Fixed
Affects Version/s: 8.12.0
Fix Version/s: 8.12.0, 8.10.14, 8.8.32
Component/s: Build process
Labels:
None

Pull Request URL:
https://github.com/hpcc-systems/HPCC-Platform/pull/16761

Description

Although Spark reports no issue regarding CVE-2022-4288, it is possible to patch the integrated spark binaries with the patched apache commons text 1.10

Attachments

Activity

People

Assignee:: Michael Gardner

Reporter:: Rodrigo Pastrana

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 02/Dec/22 7:52 PM

Updated:: 04/Jan/23 8:30 PM

Resolved:: 04/Jan/23 8:29 PM