[jira] [Commented] (FLINK-36536) Bump commons-text from 1.10.0 to 1.12.0

Vivek Dhiman (Jira) Mon, 05 May 2025 21:34:07 -0700


    [ 
https://issues.apache.org/jira/browse/FLINK-36536?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17949619#comment-17949619
 ]


Vivek Dhiman commented on FLINK-36536:
--------------------------------------

I’ve added the [PR|https://github.com/apache/flink/pull/26459]—could someone 
please take a moment to review it?

> Bump commons-text from 1.10.0 to 1.12.0
> ---------------------------------------
>
>                 Key: FLINK-36536
>                 URL: https://issues.apache.org/jira/browse/FLINK-36536
>             Project: Flink
>          Issue Type: Improvement
>            Reporter: Siddharth R
>            Priority: Major
>              Labels: pull-request-available
>
> To resolve the vulnerability in the dependent package, we can bump the 
> version to 1.12.0.
> *Vulnerabilities from dependencies:*
> [CVE-2024-47554|https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47554]
> *Package details:*
> [https://mvnrepository.com/artifact/org.apache.commons/commons-text/1.12.0]
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (FLINK-36536) Bump commons-text from 1.10.0 to 1.12.0

Reply via email to