HADOOP-19116. Update to zookeeper client 3.8.4 due to CVE-2024-23944. (#6638)

Updated ZK client dependency to 3.8.4 to address CVE-2024-23944. Contributed by PJ Fanning
2024-03-25 16:10:56 +01:00 · 2024-03-25 16:10:56 +01:00 · 7653f968e5
commit 7653f968e5
parent c4fa1b65fb
2 changed files with 2 additions and 2 deletions
--- a/2
+++ b/2
@ -340,7 +340,7 @@ org.apache.sshd:sshd-core:2.11.0
 org.apache.sshd:sshd-sftp:2.11.0
 org.apache.solr:solr-solrj:8.11.2
 org.apache.yetus:audience-annotations:0.5.0
-org.apache.zookeeper:zookeeper:3.8.3
+org.apache.zookeeper:zookeeper:3.8.4
 org.codehaus.jettison:jettison:1.5.4
 org.eclipse.jetty:jetty-annotations:9.4.53.v20231009
 org.eclipse.jetty:jetty-http:9.4.53.v20231009
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@ -103,7 +103,7 @@
    <hadoop-thirdparty-shaded-protobuf-prefix>${hadoop-thirdparty-shaded-prefix}.protobuf</hadoop-thirdparty-shaded-protobuf-prefix>
    <hadoop-thirdparty-shaded-guava-prefix>${hadoop-thirdparty-shaded-prefix}.com.google.common</hadoop-thirdparty-shaded-guava-prefix>
-    <zookeeper.version>3.8.3</zookeeper.version>
+    <zookeeper.version>3.8.4</zookeeper.version>
    <curator.version>5.2.0</curator.version>
    <findbugs.version>3.0.5</findbugs.version>
    <dnsjava.version>3.4.0</dnsjava.version>