Skip to content

Commit d9bcee9

Browse files
pjfanningpjfanning
authored
HADOOP-19289. Upgrade to protobuf-java 3.25.5 (#7072)
Addresses CVE-2024-7254 Contributed by PJ Fanning
1 parent b6916eb commit d9bcee9

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

LICENSE-binary

+1-1
Original file line numberDiff line numberDiff line change
@@ -395,7 +395,7 @@ hadoop-hdfs-project/hadoop-hdfs/src/main/webapps/static/d3-3.5.17.min.js
395395
leveldb v1.13
396396

397397
com.google.protobuf:protobuf-java:2.5.0
398-
com.google.protobuf:protobuf-java:3.25.3
398+
com.google.protobuf:protobuf-java:3.25.5
399399
com.google.re2j:re2j:1.1
400400
com.jcraft:jsch:0.1.55
401401
com.thoughtworks.paranamer:paranamer:2.3

hadoop-project/pom.xml

+1-1
Original file line numberDiff line numberDiff line change
@@ -93,7 +93,7 @@
9393
<!-- Protobuf scope in other modules which explicitly import the libarary -->
9494
<transient.protobuf2.scope>${common.protobuf2.scope}</transient.protobuf2.scope>
9595
<!-- ProtocolBuffer version, actually used in Hadoop -->
96-
<hadoop.protobuf.version>3.23.4</hadoop.protobuf.version>
96+
<hadoop.protobuf.version>3.25.5</hadoop.protobuf.version>
9797
<protoc.path>${env.HADOOP_PROTOC_PATH}</protoc.path>
9898

9999
<hadoop-thirdparty.version>1.3.0</hadoop-thirdparty.version>

0 commit comments

Comments
 (0)