Skip to content

HIVE-29238:upgrade kafka version to fix CVE-2024-31141 and CVE-2021-3… #6110

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

HIVE-29238:upgrade kafka version to fix CVE-2024-31141 and CVE-2021-3… #6110

wants to merge 2 commits into from
+70 −93

Conversation

@ramitg254
Copy link
Contributor

@ramitg254 ramitg254 commented Oct 2, 2025

…8153

What changes were proposed in this pull request?

Why are the changes needed?

Does this PR introduce any user-facing change?

How was this patch tested?

zabetak
zabetak reviewed Oct 2, 2025
View reviewed changes
pom.xml
<junit.jupiter.version>5.13.3</junit.jupiter.version>
<junit.vintage.version>5.13.3</junit.vintage.version>
<kafka.version>2.5.0</kafka.version>
<kafka.version>3.9.1</kafka.version>
Copy link
Member

@zabetak zabetak Oct 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If I recall well there were issues with previous upgrade attempts. Please check the (git) history and related PRs for more information to ensure that code remains functional.

Copy link
Contributor Author

@ramitg254 ramitg254 Oct 2, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes I am aware of that, its wip right now, I am planning to address those issues if I get a grren label in current state

@ramitg254 ramitg254 changed the title [WIP]HIVE-29238:upgrade kafka version to fix CVE-2024-31141 and CVE-2021-3… HIVE-29238:upgrade kafka version to fix CVE-2024-31141 and CVE-2021-3… Oct 21, 2025
@ramitg254
Copy link
Contributor Author

ramitg254 commented Nov 8, 2025

@zabetak Thanks for the info, some props changes were left , I have added those changes and enabled the kafka_storage_handler.q and results are getting generated so its fine now.

@ramitg254 ramitg254 force-pushed the HIVE-29238 branch 2 times, most recently from 1480e51 to 8b90e96 Compare November 8, 2025 23:53
@sonarqubecloud
Copy link

sonarqubecloud bot commented Nov 9, 2025

Quality Gate Passed Quality Gate passed

Issues
2 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@zabetak zabetak zabetak left review comments

Assignees

No one assigned

Labels

tests passed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ramitg254 @zabetak @asf-ci-hive