Hi Alex, Thanks for looking into it. I am able to back port the fix to 1.19.2 as is and a PR[1] is raised for the same.
[1] https://github.com/apache/flink/pull/25809 Regards, Ammu > On 17 Dec 2024, at 12:05 AM, Alexander Fedulov <alexander.fedu...@gmail.com> > wrote: > > Hi Ammu, > > Thanks for bringing this up. Could you please verify if this fix can also > be backported to 1.19.2 as is? > > Best, > Alex > > On Wed, 11 Dec 2024 at 03:01, ConradJam <czy...@apache.org> wrote: > >> +1 for a 1.20.1 release , best ~ >> >> David Radley <david_rad...@uk.ibm.com> 于2024年12月11日周三 00:07写道: >> >>> +1 for a 1.20.1 release, Thanks for driving Alex! >>> >>> There is a PR [1] against master that fixes a lot of vulnerabilities in >>> the Web UI, this requires a PR that brings in a later level of Node [2]. >> We >>> would like to backport these and have them part of the 1.20.1 release, >>> Kind regards, David. >>> >>> [1] https://github.com/apache/flink/pull/25718 >>> [2] https://github.com/apache/flink/pull/25670 >>> From: Ammu P <ammup...@gmail.com> >>> Date: Tuesday, 10 December 2024 at 15:12 >>> To: dev@flink.apache.org <dev@flink.apache.org> >>> Subject: [EXTERNAL] RE: Re: [DISCUSS] Flink 1.20.1 release >>> +1 for a 1.20.1 release, Thanks for driving! >>> >>> There was one issue[1] for which I have raised a fix PR[2] which I would >>> like to be included as part of this release. Please let me know if >> anything >>> needs to be done for this. >>> >>> [1] https://issues.apache.org/jira/browse/FLINK-28897 >>> [2] https://github.com/apache/flink/pull/25656 >>> >>> Regards, >>> Ammu >>> >>> On 2024/11/26 03:27:46 Yuepeng Pan wrote: >>>> Thanks for driving this ! >>>> +1 for a 1.20.1 release, >>>> >>>> And there's a pending issue here[1][2], and judging by the results of >>> the current email thread[3] call for comments, >>>> it seems need to be merged into the 1.x series. >>>> Would we consider merging it into these two upcoming releases? >>>> I'd like to do something about it if needed. >>>> >>>> [1] https://github.com/apache/flink/pull/25218 >>>> [2] https://issues.apache.org/jira/browse/FLINK-33977[3]< >>> https://issues.apache.org/jira/browse/FLINK-33977%5b3%5d> >>> https://lists.apache.org/thread/24xtcnrhv8504ldf5lm58plqm498b89k >>>> >>>> Best, >>>> Yuepeng Pan >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> At 2024-11-26 01:50:05, "Tom Cooper" <co...@tomcooper.dev> wrote: >>>>> +1 for a 1.20.1 release, thanks for driving this Alex. >>>>> >>>>> I am new to Flink and not totally clear on the release process. >>>>> Is there going to be a code freeze date? There are a number of CVE >>> fixes ([1],[2]) I would really like to be included. >>>>> >>>>> Tom Cooper >>>>> >>>>> [1](https://github.com/apache/flink/pull/25573) >>>>> [2](https://github.com/apache/flink/pull/25606) >>>>> >>>>> On Friday, 22 November 2024 at 14:41, Alexander Fedulov < >>> al...@gmail.com> wrote: >>>>> >>>>>> Hi everyone, >>>>>> >>>>>> I would like to discuss creating the first patch release for 1.20. >>> This >>>>>> version was released almost 4 months ago, and more than 70 commits >>> have >>>>>> accumulated since then [1]. >>>>>> >>>>>> If there are no objections to the release, I would like to volunteer >>> as the >>>>>> release manager. >>>>>> >>>>>> Best regards, >>>>>> Alex >>>>>> >>>>>> [1] >>> https://github.com/apache/flink/compare/release-1.20.0...release-1.20 >>>> >>> >>> Unless otherwise stated above: >>> >>> IBM United Kingdom Limited >>> Registered in England and Wales with number 741598 >>> Registered office: Building C, IBM Hursley Office, Hursley Park Road, >>> Winchester, Hampshire SO21 2JN >>> >>
