-
Notifications
You must be signed in to change notification settings - Fork 3.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[fix][sec] Bump avro version to 1.11.3 for CVE-2023-39410 #21341
Conversation
Signed-off-by: tison <wander4096@gmail.com>
Signed-off-by: tison <wander4096@gmail.com>
Signed-off-by: tison <wander4096@gmail.com>
Interesting. The upgrade seems not transparent. |
It's about the different display of double type |
74c7bfb
to
9eb470d
Compare
Signed-off-by: tison <wander4096@gmail.com>
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit f5222d6)
Signed-off-by: tison <wander4096@gmail.com>
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit f5222d6)
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit 23bf51a)
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit 23bf51a)
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit f5222d6)
Signed-off-by: tison <wander4096@gmail.com>
Signed-off-by: tison <wander4096@gmail.com>
…ache#21341)" This reverts commit 5f28257.
Signed-off-by: tison <wander4096@gmail.com> (cherry picked from commit f5222d6)
Motivation
Fix CVE-2023-39410
Modifications
Upgrade avro version to 1.11.3
Verifying this change
Does this pull request potentially affect one of the following parts:
If the box was checked, please highlight the changes
Documentation
doc
doc-required
doc-not-needed
doc-complete
Matching PR in forked repository
PR in forked repository: