Skip to content

Fix Critical pyArrow CVE-2023-47248

Cyril Monmouton requested to merge feature/fix-CVEs-pyarrow into master


Update pyArrow to version 14.0.1 due to critical CVE-2023-47248 around deserialisation on parquet format.

Type of change

  • 🔒 Security fix


  • New tests added
  • Covered by the unit tests
  • Covered by the integration tests
  • Non functional testing (performance, scalability, security ...)

Work Item

Edited by Yannick

Merge request reports