Abhay created HIVE-25696:
----------------------------
Summary: Hive - Upgrade Spring framework to 5.3.10+/5.2.17+ due to
CVE-2021-22118, CVE-2021-22096
Key: HIVE-25696
URL: https://issues.apache.org/jira/browse/HIVE-25696
Project: Hive
Issue Type: Bug
Reporter: Abhay
Assignee: Abhay
Hive is currently pulling in 4.3.29, which is unsupported and vulnerable.
Please upgrade to 5.2.17+/5.3.10+
Also, the spring framework is being used as part of the testutils, so we can
reduce the scope of the dependency to test.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
