hive icon indicating copy to clipboard operation
hive copied to clipboard

Published 20 hours ago verified publisher icon apache

HIVE-28041 : Upgrade jetty to 9.4.53 due to CVE-2023-44487

Open AnmolSun opened this issue 1 year ago • 2 comments

AnmolSun avatar Jan 29 '24 08:01 AnmolSun

Quality Gate Passed Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

sonarqubecloud[bot] avatar Jan 30 '24 10:01 sonarqubecloud[bot]

Hive currently uses Apache DirServer 1.5.7, which is not compatible with Jetty 9.4.53.

The Apache DirServer version compatible with this Jetty upgrade is 2.0.0.AM25+. Unfortunately, the tests failing upon using Apache DirServer 2.0.0.AM25 is genuine and caused by what seems to be a change in behaviour. Lodged a Jira to DirServer here - DIRSERVER-2386

AnmolSun avatar Feb 01 '24 03:02 AnmolSun

This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Feel free to reach out on the [email protected] list if the patch is in need of reviews.

github-actions[bot] avatar Apr 02 '24 00:04 github-actions[bot]