[
https://issues.apache.org/jira/browse/FLINK-8222?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16282490#comment-16282490
]
ASF GitHub Bot commented on FLINK-8222:
---------------------------------------
GitHub user greghogan opened a pull request:
https://github.com/apache/flink/pull/5136
[FLINK-8222] [build] Update Scala version
## What is the purpose of the change
This is an incremental upgrade to the Scala security release 2.11.12.
"A privilege escalation vulnerability (CVE-2017-15288) has been identified
in the Scala compilation daemon."
https://www.scala-lang.org/news/security-update-nov17.html
## Brief change log
Updated scala version in both parent `pom.xml` and in
flink-quickstart-scala `pom.xml`.
## Verifying this change
This change is already covered by existing tests, such as *(please describe
tests)*.
## Does this pull request potentially affect one of the following parts:
- Dependencies (does it add or upgrade a dependency): (**yes** / no)
- The public API, i.e., is any changed class annotated with
`@Public(Evolving)`: (yes / **no**)
- The serializers: (yes / **no** / don't know)
- The runtime per-record code paths (performance sensitive): (yes /
**no** / don't know)
- Anything that affects deployment or recovery: JobManager (and its
components), Checkpointing, Yarn/Mesos, ZooKeeper: (yes / **no** / don't know)
- The S3 file system connector: (yes / **no** / don't know)
## Documentation
- Does this pull request introduce a new feature? (yes / **no**)
- If yes, how is the feature documented? (**not applicable** / docs /
JavaDocs / not documented)
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/greghogan/flink 8222_update_scala_version
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/flink/pull/5136.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #5136
----
commit 7136e7f2def4c2d5a694729e3aefc1e4f54dfa22
Author: Greg Hogan <c...@greghogan.com>
Date: 2017-12-07T18:22:00Z
[FLINK-8222] [build] Update Scala version
This is an incremental upgrade to the Scala security release 2.11.12.
----
> Update Scala version
> --------------------
>
> Key: FLINK-8222
> URL: https://issues.apache.org/jira/browse/FLINK-8222
> Project: Flink
> Issue Type: Improvement
> Components: Build System
> Affects Versions: 1.4.0
> Reporter: Greg Hogan
> Assignee: Greg Hogan
>
> Update Scala to version {{2.11.12}}. I don't believe this affects the Flink
> distribution but rather anyone who is compiling Flink or a
> Flink-quickstart-derived program on a shared system.
> "A privilege escalation vulnerability (CVE-2017-15288) has been identified in
> the Scala compilation daemon."
> https://www.scala-lang.org/news/security-update-nov17.html
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
