HADOOP-18354. Upgrade reload4j to 1.22.2 due to XXE vulnerability (#4607).

Contributed by PJ Fanning.

Signed-off-by: Ayush Saxena <ayushsaxena@apache.org>
This commit is contained in:
PJ Fanning 2022-07-24 11:31:47 +01:00 committed by Steve Loughran
parent c679bc76d2
commit 897be3a619
No known key found for this signature in database
GPG Key ID: D22CF846DBB162A0
2 changed files with 2 additions and 2 deletions

View File

@ -208,7 +208,7 @@ License Version 2.0:
hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/AbstractFuture.java hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/AbstractFuture.java
hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/TimeoutFuture.java hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/TimeoutFuture.java
ch.qos.reload4j:reload4j:1.2.18.3 ch.qos.reload4j:reload4j:1.2.22
com.aliyun:aliyun-java-sdk-core:3.4.0 com.aliyun:aliyun-java-sdk-core:3.4.0
com.aliyun:aliyun-java-sdk-ecs:4.2.0 com.aliyun:aliyun-java-sdk-ecs:4.2.0
com.aliyun:aliyun-java-sdk-ram:3.0.0 com.aliyun:aliyun-java-sdk-ram:3.0.0

View File

@ -79,7 +79,7 @@
<!-- SLF4J/LOG4J version --> <!-- SLF4J/LOG4J version -->
<slf4j.version>1.7.36</slf4j.version> <slf4j.version>1.7.36</slf4j.version>
<reload4j.version>1.2.18.3</reload4j.version> <reload4j.version>1.2.22</reload4j.version>
<!-- com.google.re2j version --> <!-- com.google.re2j version -->
<re2j.version>1.1</re2j.version> <re2j.version>1.1</re2j.version>