hive-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rajkumar Singh (Jira)" <j...@apache.org>
Subject [jira] [Commented] (HIVE-24039) Update jquery version to mitigate CVE-2020-11023
Date Thu, 03 Sep 2020 02:20:00 GMT

    [ https://issues.apache.org/jira/browse/HIVE-24039?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17189789#comment-17189789
] 

Rajkumar Singh commented on HIVE-24039:
---------------------------------------

Hi Kishen, The pul request is already available for this, https://github.com/apache/hive/pull/1403,
can you please review it?

> Update jquery version to mitigate CVE-2020-11023
> ------------------------------------------------
>
>                 Key: HIVE-24039
>                 URL: https://issues.apache.org/jira/browse/HIVE-24039
>             Project: Hive
>          Issue Type: Bug
>          Components: HiveServer2
>            Reporter: Rajkumar Singh
>            Assignee: Kishen Das
>            Priority: Major
>
> there is known vulnerability in jquery version used by hive, with this jira plan is to
upgrade the jquery version 3.5.0 where it's been fixed. more details about the vulnerability
can be found here.
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11023



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message