From b1ed23654c01052074ea81fadb685d2ea7bb4bfa Mon Sep 17 00:00:00 2001
From: rohit-kb <115476286+rohit-kb@users.noreply.github.com>
Date: Tue, 8 Aug 2023 18:07:20 +0530
Subject: [PATCH] HADOOP-18837. Upgrade okio to 3.4.0 due to CVE-2023-3635.
(#5914)
Contributed by Rohit Kumar
---
LICENSE-binary | 2 +-
hadoop-project/pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 72318d9bf0..b1a24c2bd5 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -242,7 +242,7 @@ com.google.guava:listenablefuture:9999.0-empty-to-avoid-conflict-with-guava
com.microsoft.azure:azure-storage:7.0.0
com.nimbusds:nimbus-jose-jwt:9.31
com.squareup.okhttp3:okhttp:4.10.0
-com.squareup.okio:okio:3.2.0
+com.squareup.okio:okio:3.4.0
com.zaxxer:HikariCP:4.0.3
commons-beanutils:commons-beanutils:1.9.4
commons-cli:commons-cli:1.5.0
diff --git a/hadoop-project/pom.xml b/hadoop-project/pom.xml
index 02feba3d1e..63c2a741c9 100644
--- a/hadoop-project/pom.xml
+++ b/hadoop-project/pom.xml
@@ -133,7 +133,7 @@
10.14.2.0
6.2.1.jre7
4.10.0
- 3.2.0
+ 3.4.0
1.6.20
1.6.20
2.0.6.1