[jira] [Commented] (FLINK-39647) Upgrade presto hive

Sergey Nuyanzin (Jira) Sun, 17 May 2026 13:25:08 -0700


    [ 
https://issues.apache.org/jira/browse/FLINK-39647?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18081509#comment-18081509
 ]


Sergey Nuyanzin commented on FLINK-39647:
-----------------------------------------

downgraded to 0.294 as maximum version still running on jdk11
[a49eca810678d5389f0522cf13e51ce4713c87a3|https://github.com/apache/flink/commit/a49eca810678d5389f0522cf13e51ce4713c87a3]

> Upgrade presto hive
> -------------------
>
>                 Key: FLINK-39647
>                 URL: https://issues.apache.org/jira/browse/FLINK-39647
>             Project: Flink
>          Issue Type: Technical Debt
>            Reporter: Sergey Nuyanzin
>            Assignee: Sergey Nuyanzin
>            Priority: Major
>              Labels: pull-request-available
>             Fix For: 2.4.0
>
>
> There is a number of cves (coming as transitive) in current version
> for instance
> {noformat}
> CVE-2025-67721
> CVE-2025-52999
> CVE-2025-49128
> CVE-2024-36114
> CVE-2023-43642
> CVE-2023-34455
> CVE-2023-34454
> CVE-2023-34453
> CVE-2022-42004
> CVE-2022-42003
> CVE-2022-31159
> CVE-2021-46877
> CVE-2020-36518
> CVE-2020-25649
> CVE-2020-13949
> CVE-2019-0205
> CVE-2018-1320
> CVE-2018-11798
> {noformat}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (FLINK-39647) Upgrade presto hive

Reply via email to