Skip to content

Commit 36cb8a6

Browse files
pjfanningpjfanning
authored
HADOOP-18354. Upgrade reload4j to 1.22.2 due to XXE vulnerability (#4607). Contributed by PJ Fanning.
Signed-off-by: Ayush Saxena <[email protected]>
1 parent df4e593 commit 36cb8a6

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

LICENSE-binary

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -208,7 +208,7 @@ License Version 2.0:
208208
hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/AbstractFuture.java
209209
hadoop-hdfs-project/hadoop-hdfs/src/main/java/org/apache/hadoop/hdfs/server/datanode/checker/TimeoutFuture.java
210210

211-
ch.qos.reload4j:reload4j:1.2.18.3
211+
ch.qos.reload4j:reload4j:1.2.22
212212
com.aliyun:aliyun-java-sdk-core:3.4.0
213213
com.aliyun:aliyun-java-sdk-ecs:4.2.0
214214
com.aliyun:aliyun-java-sdk-ram:3.0.0

hadoop-project/pom.xml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -79,7 +79,7 @@
7979

8080
<!-- SLF4J/LOG4J version -->
8181
<slf4j.version>1.7.36</slf4j.version>
82-
<reload4j.version>1.2.18.3</reload4j.version>
82+
<reload4j.version>1.2.22</reload4j.version>
8383

8484
<!-- com.google.re2j version -->
8585
<re2j.version>1.1</re2j.version>

0 commit comments

Comments
 (0)