Skip to content

Commit

Permalink
[fix][misc] Bump GRPC version to 1.55.3 to fix CVE (apache#21057)
Browse files Browse the repository at this point in the history
  • Loading branch information
mattisonchao authored Aug 29, 2023
1 parent d099ac4 commit 6ff83b6
Show file tree
Hide file tree
Showing 3 changed files with 32 additions and 30 deletions.
38 changes: 20 additions & 18 deletions distribution/server/src/assemble/LICENSE.bin.txt
Original file line number Diff line number Diff line change
Expand Up @@ -259,7 +259,7 @@ The Apache Software License, Version 2.0
- com.fasterxml.jackson.module-jackson-module-parameter-names-2.14.2.jar
* Caffeine -- com.github.ben-manes.caffeine-caffeine-2.9.1.jar
* Conscrypt -- org.conscrypt-conscrypt-openjdk-uber-2.5.2.jar
* Proto Google Common Protos -- com.google.api.grpc-proto-google-common-protos-2.0.1.jar
* Proto Google Common Protos -- com.google.api.grpc-proto-google-common-protos-2.9.0.jar
* Bitbucket -- org.bitbucket.b_c-jose4j-0.9.3.jar
* Gson
- com.google.code.gson-gson-2.8.9.jar
Expand Down Expand Up @@ -420,23 +420,25 @@ The Apache Software License, Version 2.0
- org.jetbrains.kotlin-kotlin-stdlib-jdk8-1.8.20.jar
- org.jetbrains-annotations-13.0.jar
* gRPC
- io.grpc-grpc-all-1.45.1.jar
- io.grpc-grpc-auth-1.45.1.jar
- io.grpc-grpc-context-1.45.1.jar
- io.grpc-grpc-core-1.45.1.jar
- io.grpc-grpc-netty-1.45.1.jar
- io.grpc-grpc-protobuf-1.45.1.jar
- io.grpc-grpc-protobuf-lite-1.45.1.jar
- io.grpc-grpc-stub-1.45.1.jar
- io.grpc-grpc-alts-1.45.1.jar
- io.grpc-grpc-api-1.45.1.jar
- io.grpc-grpc-grpclb-1.45.1.jar
- io.grpc-grpc-netty-shaded-1.45.1.jar
- io.grpc-grpc-services-1.45.1.jar
- io.grpc-grpc-xds-1.45.1.jar
- io.grpc-grpc-rls-1.45.1.jar
- io.grpc-grpc-all-1.55.3.jar
- io.grpc-grpc-auth-1.55.3.jar
- io.grpc-grpc-context-1.55.3.jar
- io.grpc-grpc-core-1.55.3.jar
- io.grpc-grpc-netty-1.55.3.jar
- io.grpc-grpc-protobuf-1.55.3.jar
- io.grpc-grpc-protobuf-lite-1.55.3.jar
- io.grpc-grpc-stub-1.55.3.jar
- io.grpc-grpc-alts-1.55.3.jar
- io.grpc-grpc-api-1.55.3.jar
- io.grpc-grpc-grpclb-1.55.3.jar
- io.grpc-grpc-netty-shaded-1.55.3.jar
- io.grpc-grpc-services-1.55.3.jar
- io.grpc-grpc-xds-1.55.3.jar
- io.grpc-grpc-rls-1.55.3.jar
- io.grpc-grpc-servlet-1.55.3.jar
- io.grpc-grpc-servlet-jakarta-1.55.3.jar
* Perfmark
- io.perfmark-perfmark-api-0.19.0.jar
- io.perfmark-perfmark-api-0.26.0.jar
* OpenCensus
- io.opencensus-opencensus-api-0.28.0.jar
- io.opencensus-opencensus-contrib-http-util-0.28.0.jar
Expand Down Expand Up @@ -487,7 +489,7 @@ The Apache Software License, Version 2.0
- com.google.http-client-google-http-client-gson-1.41.0.jar
- com.google.http-client-google-http-client-1.41.0.jar
- com.google.auto.value-auto-value-annotations-1.9.jar
- com.google.re2j-re2j-1.5.jar
- com.google.re2j-re2j-1.6.jar
* Jetcd
- io.etcd-jetcd-api-0.7.5.jar
- io.etcd-jetcd-common-0.7.5.jar
Expand Down
4 changes: 2 additions & 2 deletions pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -164,9 +164,9 @@ flexible messaging model and an intuitive client API.</description>
<typetools.version>0.5.0</typetools.version>
<protobuf3.version>3.19.6</protobuf3.version>
<protoc3.version>${protobuf3.version}</protoc3.version>
<grpc.version>1.45.1</grpc.version>
<grpc.version>1.55.3</grpc.version>
<google-http-client.version>1.41.0</google-http-client.version>
<perfmark.version>0.19.0</perfmark.version>
<perfmark.version>0.26.0</perfmark.version>
<protoc-gen-grpc-java.version>${grpc.version}</protoc-gen-grpc-java.version>
<gson.version>2.8.9</gson.version>
<system-lambda.version>1.2.1</system-lambda.version>
Expand Down
20 changes: 10 additions & 10 deletions pulsar-sql/presto-distribution/LICENSE
Original file line number Diff line number Diff line change
Expand Up @@ -263,14 +263,14 @@ The Apache Software License, Version 2.0
- netty-incubator-transport-native-io_uring-0.0.21.Final-linux-x86_64.jar
- netty-incubator-transport-native-io_uring-0.0.21.Final-linux-aarch_64.jar
* GRPC
- grpc-api-1.45.1.jar
- grpc-context-1.45.1.jar
- grpc-core-1.45.1.jar
- grpc-grpclb-1.45.1.jar
- grpc-netty-1.45.1.jar
- grpc-protobuf-1.45.1.jar
- grpc-protobuf-lite-1.45.1.jar
- grpc-stub-1.45.1.jar
- grpc-api-1.55.3.jar
- grpc-context-1.55.3.jar
- grpc-core-1.55.3.jar
- grpc-grpclb-1.55.3.jar
- grpc-netty-1.55.3.jar
- grpc-protobuf-1.55.3.jar
- grpc-protobuf-lite-1.55.3.jar
- grpc-stub-1.55.3.jar
* JEtcd
- jetcd-api-0.7.5.jar
- jetcd-common-0.7.5.jar
Expand Down Expand Up @@ -477,7 +477,7 @@ The Apache Software License, Version 2.0
* Apache Yetus Audience Annotations
- audience-annotations-0.12.0.jar
* Perfmark
- perfmark-api-0.19.0.jar
- perfmark-api-0.26.0.jar
* RabbitMQ Java Client
- amqp-client-5.5.3.jar
* Stream Lib
Expand All @@ -490,7 +490,7 @@ Protocol Buffers License
* Protocol Buffers
- protobuf-java-3.19.6.jar
- protobuf-java-util-3.19.6.jar
- proto-google-common-protos-2.0.1.jar
- proto-google-common-protos-2.9.0.jar

BSD 3-clause "New" or "Revised" License
* RE2J TD -- re2j-td-1.4.jar
Expand Down

0 comments on commit 6ff83b6

Please sign in to comment.