首頁 探索 說明
註冊 登入
apache
/
hadoop
镜像来自 https://github.com/apache/hadoop.git
2
0
複刻 1
Files 問題管理 0 Wiki
瀏覽代碼

HADOOP-19116. Update to zookeeper client 3.8.4 due to CVE-2024-23944. (#6638)

Updated ZK client dependency to 3.8.4 to address  CVE-2024-23944.

Contributed by PJ Fanning
PJ Fanning 10 月之前
父節點
0c3c9d1997
當前提交
bd63358c0b
共有 2 個文件被更改,包括 18 次插入2 次删除
分割檢視 顯示文件統計
  1. 1 1
      LICENSE-binary
  2. 17 1
      hadoop-project/pom.xml

+ 1 - 1
LICENSE-binary
查看文件 

@@ -341,7 +341,7 @@ org.apache.kerby:kerby-util:1.0.1
 
 org.apache.kerby:kerby-xdr:1.0.1
 
 org.apache.kerby:token-provider:1.0.1
 
 org.apache.yetus:audience-annotations:0.5.0
 
-org.apache.zookeeper:zookeeper:3.7.2
 
+org.apache.zookeeper:zookeeper:3.8.4
 
 org.codehaus.jettison:jettison:1.5.4
 
 org.eclipse.jetty:jetty-annotations:9.4.53.v20231009
 
 org.eclipse.jetty:jetty-http:9.4.53.v20231009

+ 17 - 1
hadoop-project/pom.xml
查看文件 

@@ -105,7 +105,7 @@
 
     <hadoop-thirdparty-shaded-protobuf-prefix>${hadoop-thirdparty-shaded-prefix}.protobuf</hadoop-thirdparty-shaded-protobuf-prefix>
 
     <hadoop-thirdparty-shaded-guava-prefix>${hadoop-thirdparty-shaded-prefix}.com.google.common</hadoop-thirdparty-shaded-guava-prefix>
 
 
-    <zookeeper.version>3.7.2</zookeeper.version>
 
+    <zookeeper.version>3.8.4</zookeeper.version>
 
     <curator.version>5.2.0</curator.version>
 
     <findbugs.version>3.0.5</findbugs.version>
 
     <dnsjava.version>2.1.7</dnsjava.version>
 
@@ -1415,6 +1415,14 @@
 
             <groupId>log4j</groupId>
 
             <artifactId>log4j</artifactId>
 
           </exclusion>
 
+          <exclusion>
 
+            <groupId>ch.qos.logback</groupId>
 
+            <artifactId>logback-core</artifactId>
 
+          </exclusion>
 
+          <exclusion>
 
+            <groupId>ch.qos.logback</groupId>
 
+            <artifactId>logback-classic</artifactId>
 
+          </exclusion>
 
           <exclusion>
 
             <groupId>org.slf4j</groupId>
 
             <artifactId>slf4j-api</artifactId>
 
@@ -1463,6 +1471,14 @@
 
             <groupId>log4j</groupId>
 
             <artifactId>log4j</artifactId>
 
           </exclusion>
 
+          <exclusion>
 
+            <groupId>ch.qos.logback</groupId>
 
+            <artifactId>logback-core</artifactId>
 
+          </exclusion>
 
+          <exclusion>
 
+            <groupId>ch.qos.logback</groupId>
 
+            <artifactId>logback-classic</artifactId>
 
+          </exclusion>
 
           <exclusion>
 
             <groupId>org.slf4j</groupId>
 
             <artifactId>slf4j-log4j12</artifactId>