Skip to content

Commit

Permalink
HADOOP-18540. Upgrade Bouncy Castle to 1.70 (apache#5166)
Browse files Browse the repository at this point in the history 
This addresses
- [sonatype-2021-4916] CWE-327: Use of a Broken or Risky Cryptographic Algorithm
- [sonatype-2019-0673] CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')

Contributed by Murali Krishna
  • Loading branch information
@dmmkr
dmmkr authored Jan 1, 2024
1 parent 9a4d107 commit 9edcf42
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 3 deletions.
5 changes: 3 additions & 2 deletions LICENSE-binary
View file
Original file line number Diff line number Diff line change
Expand Up @@ -479,8 +479,9 @@ com.microsoft.azure:azure-cosmosdb-gateway:2.4.5
com.microsoft.azure:azure-data-lake-store-sdk:2.3.3
com.microsoft.azure:azure-keyvault-core:1.0.0
com.microsoft.sqlserver:mssql-jdbc:6.2.1.jre7
org.bouncycastle:bcpkix-jdk15on:1.68
org.bouncycastle:bcprov-jdk15on:1.68
org.bouncycastle:bcpkix-jdk15on:1.70
org.bouncycastle:bcprov-jdk15on:1.70
org.bouncycastle:bcutil-jdk15on:1.70
org.checkerframework:checker-qual:2.5.2
org.codehaus.mojo:animal-sniffer-annotations:1.21
org.jruby.jcodings:jcodings:1.0.13
Expand Down
2 changes: 1 addition & 1 deletion hadoop-project/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -111,7 +111,7 @@
<guava.version>27.0-jre</guava.version>
<guice.version>4.2.3</guice.version>

<bouncycastle.version>1.68</bouncycastle.version>
<bouncycastle.version>1.70</bouncycastle.version>

<!-- Required for testing LDAP integration -->
<apacheds.version>2.0.0.AM26</apacheds.version>
Expand Down

0 comments on commit 9edcf42

Please sign in to comment.