Skip to content

Commit

Permalink
Merge pull request #1548 from soagarwal1/PPP-5541
Browse files Browse the repository at this point in the history 
[PPP-5541] - Vulnerable Component: jackson-databind within htrace-core-3.1.0-incubating.jar
  • Loading branch information
@singletonc
singletonc authored Jan 27, 2025
2 parents 94c7059 + ca1744c commit 82d1c18
Show file tree
Hide file tree
Showing 5 changed files with 27 additions and 64 deletions.
21 changes: 7 additions & 14 deletions shims/cdpdc71/driver/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@
<parquet.version>1.10.99.7.1.4.0-203</parquet.version>
<org.apache.hadoop.version>3.1.1.7.1.9.0-387</org.apache.hadoop.version>
<org.apache.hbase.version>2.4.17.7.1.9.0-387</org.apache.hbase.version>
<org.apache.hive.version>3.1.3000.7.1.4.0-203</org.apache.hive.version>
<org.apache.hive.version>3.1.3000.7.1.9.0-387</org.apache.hive.version>
<org.apache.oozie.version>5.1.0.7.1.4.0-203</org.apache.oozie.version>
<pig.version>0.16.0.7.1.4.0-203</pig.version>
<parquet-pig.version>1.10.99.7.1.4.0-203</parquet-pig.version>
Expand Down Expand Up @@ -284,6 +284,11 @@
<artifactId>hadoop-hdfs-client</artifactId>
<version>${org.apache.hadoop.version}</version>
</dependency>
<dependency>
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-mapreduce</artifactId>
<version>${org.apache.hbase.version}</version>
</dependency>
<dependency>
<groupId>com.hadoop.gplcompression</groupId>
<artifactId>hadoop-lzo</artifactId>
Expand Down Expand Up @@ -588,10 +593,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand All @@ -603,10 +604,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down Expand Up @@ -648,10 +645,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down Expand Up @@ -746,7 +739,7 @@
<include>
<!--Needed for Pig-->
*:antlr-runtime,*:automaton,*:pig,*:parquet-pig,*:sqoop,*:joda-time,*:jython,*:gateway-cloud-bindings,
*:gateway-util-common,*:gateway-shell,*:gateway-i18n,*:aircompressor,*:netty-*,*:libthrift
*:gateway-util-common,*:gateway-shell,*:gateway-i18n,*:aircompressor,*:netty-*,*:libthrift,*:hbase-mapreduce
</include>
<transitive>false</transitive>
</resolverFilter>
Expand Down
16 changes: 0 additions & 16 deletions shims/dataproc1421/driver/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -406,10 +406,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand All @@ -421,10 +417,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand All @@ -447,10 +439,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down Expand Up @@ -485,10 +473,6 @@
<groupId>org.eclipse.jetty</groupId>
<artifactId>*</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions shims/dataproc1421/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@
<gcs-connector.version>hadoop2-2.2.24</gcs-connector.version>

<!-- default folder -->
<org.apache.hbase.version>2.2.0</org.apache.hbase.version>
<org.apache.hbase.version>2.6.1</org.apache.hbase.version>
<org.xerial.snappy.version>1.1.1.3</org.xerial.snappy.version>
<automaton.version>1.11-8</automaton.version>
<pig.version>0.17.0</pig.version>
Expand All @@ -37,7 +37,7 @@
<commons-configuration.version>1.6</commons-configuration.version>
<commons-configuration2.version>2.10.1</commons-configuration2.version>
<geronimo-servlet_3.0_spec.version>1.0</geronimo-servlet_3.0_spec.version>
<org.apache.hive.version>2.3.6</org.apache.hive.version>
<org.apache.hive.version>3.1.3</org.apache.hive.version>
<org.apache.hadoop.version>3.4.1</org.apache.hadoop.version>
<org.apache.orc.version>1.3.4</org.apache.orc.version>
<parquet.version>1.10.1</parquet.version>
Expand Down
29 changes: 11 additions & 18 deletions shims/emr700/driver/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@
<org.apache.avro.version>1.12.0</org.apache.avro.version>
<org.apache.hive.version>3.1.3</org.apache.hive.version>
<org.apache.oozie.version>5.2.1</org.apache.oozie.version>
<org.apache.hbase.version>2.4.17</org.apache.hbase.version>
<org.apache.hbase.version>2.6.1</org.apache.hbase.version>
<org.apache.hadoop.version>3.3.6</org.apache.hadoop.version>
<org.apache.orc.version>1.6.1</org.apache.orc.version>
<sqoop.version>1.4.7</sqoop.version>
Expand Down Expand Up @@ -476,6 +476,10 @@
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-mapreduce</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down Expand Up @@ -530,10 +534,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-log4j12</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand All @@ -550,23 +550,16 @@
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-client</artifactId>
<version>${org.apache.hbase.version}</version>
<exclusions>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-common</artifactId>
<version>${org.apache.hbase.version}</version>
<exclusions>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-mapreduce</artifactId>
<version>${org.apache.hbase.version}</version>
</dependency>
<!-- The following added for Pig -->
<dependency>
Expand Down Expand Up @@ -676,7 +669,7 @@
<resolverFilter>
<include>
<!--Needed for Pig-->
*:antlr-runtime,*:automaton,*:pig,*:sqoop,*:joda-time,*:jython,*:aircompressor,*:netty-*,software.amazon.awssdk:*
*:antlr-runtime,*:automaton,*:pig,*:sqoop,*:joda-time,*:jython,*:aircompressor,*:netty-*,software.amazon.awssdk:*,*:hbase-mapreduce
</include>
<transitive>false</transitive>
</resolverFilter>
Expand Down
21 changes: 7 additions & 14 deletions shims/hdi40/driver/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,7 +20,7 @@
<parquet.version>1.10.99.7.1.4.0-203</parquet.version>
<org.apache.hadoop.version>3.1.1.7.1.9.0-387</org.apache.hadoop.version>
<org.apache.hbase.version>2.4.17.7.1.9.0-387</org.apache.hbase.version>
<org.apache.hive.version>3.1.3000.7.1.4.0-203</org.apache.hive.version>
<org.apache.hive.version>3.1.3000.7.1.9.0-387</org.apache.hive.version>
<org.apache.oozie.version>5.1.0.7.1.4.0-203</org.apache.oozie.version>
<pig.version>0.16.0.7.1.4.0-203</pig.version>
<parquet-pig.version>1.10.99.7.1.4.0-203</parquet-pig.version>
Expand Down Expand Up @@ -460,10 +460,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand All @@ -475,10 +471,6 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
Expand Down Expand Up @@ -531,12 +523,13 @@
<groupId>org.slf4j</groupId>
<artifactId>slf4j-api</artifactId>
</exclusion>
<exclusion>
<groupId>org.apache.htrace</groupId>
<artifactId>htrace-core4</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>org.apache.hbase</groupId>
<artifactId>hbase-mapreduce</artifactId>
<version>${org.apache.hbase.version}</version>
</dependency>
<dependency>
<groupId>org.apache.oozie</groupId>
<artifactId>oozie-client</artifactId>
Expand Down Expand Up @@ -642,7 +635,7 @@
<include>
<!--Needed for Pig-->
*:antlr-runtime,*:automaton,*:parquet-pig, *:pig, *:sqoop,*:joda-time,*:jython,*:aircompressor,*:netty-*,
*:bcprov-jdk18on
*:bcprov-jdk18on,*:hbase-mapreduce
</include>
<transitive>false</transitive>
</resolverFilter>
Expand Down

0 comments on commit 82d1c18

Please sign in to comment.