[jira] [Updated] (HUDI-9265) Fix parquet-avro vulenerability which is being pulled into our bundles

sivabalan narayanan (Jira) Thu, 10 Apr 2025 10:57:30 -0700


     [ 
https://issues.apache.org/jira/browse/HUDI-9265?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


sivabalan narayanan updated HUDI-9265:
--------------------------------------
    Priority: Blocker  (was: Major)

> Fix parquet-avro vulenerability which is being pulled into our bundles
> ----------------------------------------------------------------------
>
>                 Key: HUDI-9265
>                 URL: https://issues.apache.org/jira/browse/HUDI-9265
>             Project: Apache Hudi
>          Issue Type: Improvement
>          Components: dev-experience, reader-core, writer-core
>            Reporter: sivabalan narayanan
>            Assignee: sivabalan narayanan
>            Priority: Blocker
>             Fix For: 1.0.2
>
>
> [https://www.bleepingcomputer.com/news/security/max-severity-rce-flaw-discovered-in-widely-used-apache-parquet/]
>  
>  
> This impacts the parquet version used in hudi hundles. 
> Vulenerability has been fixed in 
> org.apache.parquet:parquet-avro version 1.15.1. 
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (HUDI-9265) Fix parquet-avro vulenerability which is being pulled into our bundles

Reply via email to