
<!---
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements.  See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership.  The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License.  You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
-->
# Apache Hadoop Third-party Libs Changelog

## Release thirdparty-1.2.0 - 2024-02-04


### IMPROVEMENTS:

| JIRA | Summary | Priority | Component | Reporter | Contributor |
|:---- |:---- | :--- |:---- |:---- |:---- |
| [HADOOP-18282](https://issues.apache.org/jira/browse/HADOOP-18282) | Add .asf.yaml to hadoop-thirdparty |  Major | hadoop-thirdparty | Ayush Saxena | Ayush Saxena |
| [HADOOP-18721](https://issues.apache.org/jira/browse/HADOOP-18721) | Upgrade guava in hadoop-thirdparty to 31.1-jre |  Major | hadoop-thirdparty | D M Murali Krishna Reddy | D M Murali Krishna Reddy |
| [HADOOP-18921](https://issues.apache.org/jira/browse/HADOOP-18921) | upgrade avro in hadoop-thirdparty to 1.11.3 |  Major | hadoop-thirdparty | PJ Fanning | PJ Fanning |
| [HADOOP-18342](https://issues.apache.org/jira/browse/HADOOP-18342) | Upgrade to Avro 1.11.1 |  Major | hadoop-thirdparty | PJ Fanning | PJ Fanning |
| [HADOOP-18197](https://issues.apache.org/jira/browse/HADOOP-18197) | Update protobuf 3.7.1 to a version without CVE-2021-22569 |  Major | hadoop-thirdparty | Ivan Viaznikov | PJ Fanning |


### BUG FIXES:

| JIRA | Summary | Priority | Component | Reporter | Contributor |
|:---- |:---- | :--- |:---- |:---- |:---- |
| [HADOOP-17707](https://issues.apache.org/jira/browse/HADOOP-17707) | Remove jaeger document from site index |  Major | hadoop-thirdparty | Takanobu Asanuma | Takanobu Asanuma |
| [HADOOP-17730](https://issues.apache.org/jira/browse/HADOOP-17730) | [thirdparty] Do not exclude error\_prone |  Major | hadoop-thirdparty | Wei-Chiu Chuang | Wei-Chiu Chuang |


### SUB-TASKS:

| JIRA | Summary | Priority | Component | Reporter | Contributor |
|:---- |:---- | :--- |:---- |:---- |:---- |
| [HADOOP-19055](https://issues.apache.org/jira/browse/HADOOP-19055) | Preparing for 1.3.0 development |  Major | hadoop-thirdparty | Shilun Fan | Shilun Fan |
| [HADOOP-19054](https://issues.apache.org/jira/browse/HADOOP-19054) | Update hadoop-thirdparty index.md.vm |  Major | hadoop-thirdparty | Shilun Fan | Shilun Fan |


### OTHER:

| JIRA | Summary | Priority | Component | Reporter | Contributor |
|:---- |:---- | :--- |:---- |:---- |:---- |
| [HADOOP-18843](https://issues.apache.org/jira/browse/HADOOP-18843) | Guava version 32.0.1 bump to fix CVE-2023-2976 (hadoop-thirdparty PR#23) |  Major | hadoop-thirdparty | Wei-Chiu Chuang | Wei-Chiu Chuang |