Hi there! Apache Spark has some vulnerabilities due to `protobuf-java`. As disclosed here: https://vulert.com/vuln-db/CVE-2024-7254.
I can see on the master branch that the protobuf-java version has been bumped to the stable version : https://github.com/apache/spark/blob/master/pom.xml#L128 but a new release with this fix has not been cut yet. Could you please provide me with a projected release date for the vulnerability fix? I would greatly appreciate it! Thank you, Benjamin Liu
