From issues-return-198454-archive-asf-public=cust-asf.ponee.io@hive.apache.org Thu Sep 3 03:22:03 2020 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mailroute1-lw-us.apache.org (mailroute1-lw-us.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with ESMTPS id 52F1518065D for ; Thu, 3 Sep 2020 05:22:03 +0200 (CEST) Received: from mail.apache.org (localhost [127.0.0.1]) by mailroute1-lw-us.apache.org (ASF Mail Server at mailroute1-lw-us.apache.org) with SMTP id 84BC71218CD for ; Thu, 3 Sep 2020 03:22:02 +0000 (UTC) Received: (qmail 65956 invoked by uid 500); 3 Sep 2020 03:22:02 -0000 Mailing-List: contact issues-help@hive.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@hive.apache.org Delivered-To: mailing list issues@hive.apache.org Received: (qmail 65919 invoked by uid 99); 3 Sep 2020 03:22:01 -0000 Received: from mailrelay1-us-west.apache.org (HELO mailrelay1-us-west.apache.org) (209.188.14.139) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 03 Sep 2020 03:22:01 +0000 Received: from jira-he-de.apache.org (static.172.67.40.188.clients.your-server.de [188.40.67.172]) by mailrelay1-us-west.apache.org (ASF Mail Server at mailrelay1-us-west.apache.org) with ESMTP id D89E845BAA for ; Thu, 3 Sep 2020 03:22:00 +0000 (UTC) Received: from jira-he-de.apache.org (localhost.localdomain [127.0.0.1]) by jira-he-de.apache.org (ASF Mail Server at jira-he-de.apache.org) with ESMTP id 10C047802B2 for ; Thu, 3 Sep 2020 03:22:00 +0000 (UTC) Date: Thu, 3 Sep 2020 03:22:00 +0000 (UTC) From: "Rajkumar Singh (Jira)" To: issues@hive.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Comment Edited] (HIVE-24039) Update jquery version to mitigate CVE-2020-11023 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/HIVE-24039?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17189789#comment-17189789 ] Rajkumar Singh edited comment on HIVE-24039 at 9/3/20, 3:21 AM: ---------------------------------------------------------------- Hi Kishen, The pull request is already available for this, https://github.com/apache/hive/pull/1403, can you please review it? was (Author: rajkumar singh): Hi Kishen, The pul request is already available for this, https://github.com/apache/hive/pull/1403, can you please review it? > Update jquery version to mitigate CVE-2020-11023 > ------------------------------------------------ > > Key: HIVE-24039 > URL: https://issues.apache.org/jira/browse/HIVE-24039 > Project: Hive > Issue Type: Bug > Components: HiveServer2 > Reporter: Rajkumar Singh > Assignee: Kishen Das > Priority: Major > > there is known vulnerability in jquery version used by hive, with this jira plan is to upgrade the jquery version 3.5.0 where it's been fixed. more details about the vulnerability can be found here. > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11023 -- This message was sent by Atlassian Jira (v8.3.4#803005)