Hi Sahil, These are the Apache Kafka versions where commons-io has been updated to a version not vulnerable to CVE-2024-47554: - 3.9.0 - 3.8.1 - Upcoming 3.7.2 - Upcoming 4.0.0
Best, On Fri, Dec 13, 2024 at 6:46 AM Sahil Sharma D <sahil.d.sha...@ericsson.com.invalid> wrote: > ++ Vinay > > Regards, > Sahil > > From: Sahil Sharma D > Sent: Friday, December 13, 2024 11:16 AM > To: 'users@kafka.apache.org' <users@kafka.apache.org> > Subject: RE: Fix for CVE-2024-47554 > > Gentle reminder! > > Regards, > Sahil > > From: Sahil Sharma D > Sent: Thursday, November 14, 2024 9:50 AM > To: users@kafka.apache.org<mailto:users@kafka.apache.org> > Subject: RE: Fix for CVE-2024-47554 > > Gentle reminder! > > Regards, > Sahil > > From: Sahil Sharma D > Sent: Tuesday, November 12, 2024 4:03 PM > To: users@kafka.apache.org<mailto:users@kafka.apache.org> > Subject: Fix for CVE-2024-47554 > > Hi team,, > > Can you please share in which Kafka version CVE-2024-47554 is been fixed? > > Regards, > Sahil > > -- [image: Aiven] <https://www.aiven.io> *Josep Prat* Open Source Engineering Director, *Aiven* josep.p...@aiven.io | +491715557497 aiven.io <https://www.aiven.io> | <https://www.facebook.com/aivencloud> <https://www.linkedin.com/company/aiven/> <https://twitter.com/aiven_io> *Aiven Deutschland GmbH* Alexanderufer 3-7, 10117 Berlin Geschäftsführer: Oskari Saarenmaa, Hannu Valtonen, Anna Richardson, Kenneth Chen Amtsgericht Charlottenburg, HRB 209739 B