Release Notes
Also available as:


  • Summary: Apache NiFi Denial of service issue because of commons-compress vulnerability
  • Severity: Low
  • Versions Affected: Apache NiFi 0.1.0 – 1.5.0
  • Description: A vulnerability in the commons-compress library could cause denial of service. See commons-compress CVE-2018-1324 announcement for more information.
  • Mitigation: The fix to upgrade the commons-compress library to 1.16.1 was applied to the HDF 3.2.0 release. To address this issue, upgrade to HDF 3.2.0.