[jira] [Commented] (IMPALA-14444) Upgrade bouncycastle to 1.79

Csaba Ringhofer (Jira) Sat, 20 Sep 2025 09:21:20 -0700


    [ 
https://issues.apache.org/jira/browse/IMPALA-14444?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18021442#comment-18021442
 ]


Csaba Ringhofer commented on IMPALA-14444:
------------------------------------------

>Is there a specific motivation? Why not 1.80, 1.81, or 1.82?
1.78 has a known CVE: 
https://www.wiz.io/vulnerability-database/cve/cve-2025-8916
I didn't think this through very much, 1.79 doesn't have any CVEs, so it seemed 
suitable.

> Upgrade bouncycastle to 1.79
> ----------------------------
>
>                 Key: IMPALA-14444
>                 URL: https://issues.apache.org/jira/browse/IMPALA-14444
>             Project: IMPALA
>          Issue Type: Task
>          Components: Frontend
>            Reporter: Csaba Ringhofer
>            Priority: Major
>              Labels: frontend
>




--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Commented] (IMPALA-14444) Upgrade bouncycastle to 1.79

Reply via email to