tez/0.10.4-r7: cve remediation #52977

CVE scan report

aarch64/tez-0.10.4-r8.apk

├── 📄 /usr/share/java/tez/lib/async-http-client-2.12.3.jar
│       📦 async-http-client 2.12.3 (java-archive)
│           Critical CVE-2024-53990 GHSA-mfj5-cf8g-g2fv fixed in 2.12.4
├── 📄 /usr/share/java/tez/lib/avro-1.9.2.jar
│       📦 avro 1.9.2 (java-archive)
│           Critical CVE-2024-47561 GHSA-r7pg-v2c8-mfg3 fixed in 1.11.4
│           High CVE-2023-39410 GHSA-rhrv-645h-fjfh fixed in 1.11.3
├── 📄 /usr/share/java/tez/lib/jetty-http-9.4.53.v20231009.jar
│       📦 jetty-http 9.4.53.v20231009 (java-archive)
│           Medium CVE-2024-6763 GHSA-qh8g-58pp-2wxh fixed in 12.0.12
├── 📄 /usr/share/java/tez/lib/jetty-server-9.4.53.v20231009.jar
│       📦 jetty-server 9.4.53.v20231009 (java-archive)
│           Medium CVE-2024-8184 GHSA-g8m5-722r-8whq fixed in 9.4.56
│           High CVE-2024-13009 GHSA-q4rv-gq96-w7c5 fixed in 9.4.57.v20241219
└── 📄 /usr/share/java/tez/lib/netty-handler-4.1.100.Final.jar
        📦 netty-handler 4.1.100.Final (java-archive)
            High CVE-2025-24970 GHSA-4g8c-wm8x-jfhw fixed in 4.1.118.Final

x86_64/tez-0.10.4-r8.apk

├── 📄 /usr/share/java/tez/lib/async-http-client-2.12.3.jar
│       📦 async-http-client 2.12.3 (java-archive)
│           Critical CVE-2024-53990 GHSA-mfj5-cf8g-g2fv fixed in 2.12.4
├── 📄 /usr/share/java/tez/lib/avro-1.9.2.jar
│       📦 avro 1.9.2 (java-archive)
│           Critical CVE-2024-47561 GHSA-r7pg-v2c8-mfg3 fixed in 1.11.4
│           High CVE-2023-39410 GHSA-rhrv-645h-fjfh fixed in 1.11.3
├── 📄 /usr/share/java/tez/lib/jetty-http-9.4.53.v20231009.jar
│       📦 jetty-http 9.4.53.v20231009 (java-archive)
│           Medium CVE-2024-6763 GHSA-qh8g-58pp-2wxh fixed in 12.0.12
├── 📄 /usr/share/java/tez/lib/jetty-server-9.4.53.v20231009.jar
│       📦 jetty-server 9.4.53.v20231009 (java-archive)
│           Medium CVE-2024-8184 GHSA-g8m5-722r-8whq fixed in 9.4.56
│           High CVE-2024-13009 GHSA-q4rv-gq96-w7c5 fixed in 9.4.57.v20241219
└── 📄 /usr/share/java/tez/lib/netty-handler-4.1.100.Final.jar
        📦 netty-handler 4.1.100.Final (java-archive)
            High CVE-2025-24970 GHSA-4g8c-wm8x-jfhw fixed in 4.1.118.Final

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

tez/0.10.4-r7: cve remediation #52977

Uh oh!

Uh oh!

tez/0.10.4-r7: cve remediation #52977

Uh oh!

CVE scan report

Details

aarch64/tez-0.10.4-r8.apk

x86_64/tez-0.10.4-r8.apk

Re-running checks...

tez/0.10.4-r7: cve remediation #52977

Uh oh!

tez/0.10.4-r7: fix GHSA-rhrv-645h-fjfh

Uh oh!

tez/0.10.4-r7: cve remediation #52977

Uh oh!

CVE scan report

Details

aarch64/tez-0.10.4-r8.apk

x86_64/tez-0.10.4-r8.apk

Re-running checks...