feat: backport Hadoop 3.4.1 vulnerability fixes

[dervoeti]

Description

Backported these patches to Hadoop 3.4.1 to get rid of a bunch of vulnerabilities:

• HADOOP-19352
• HADOOP-19335
• HADOOP-19465
• HADOOP-19456
• HADOOP-19225

They mainly just bump dependencies. The first one (Aliyun SDK bump) has some more changes related to the bump, but it's not a critical component as far as I see it (integration module for a chinese cloud provider's storage solution).

Build and smoke test were successfull. I also ran the HBase 2.6.2 smoke test with this Hadoop build, went fine as well.

Definition of Done Checklist

Note

Not all of these items are applicable to all PRs, the author should update this template to only leave the boxes in that are relevant.

Please make sure all these things are done and tick the boxes

• Changes are OpenShift compatible
• All added packages (via microdnf or otherwise) have a comment on why they are added
• Things not downloaded from Red Hat repositories should be mirrored in the Stackable repository and downloaded from there
• All packages should have (if available) signatures/hashes verified
• Add an entry to the CHANGELOG.md file
• Integration tests ran successfully

TIP: Running integration tests with a new product image

The image can be built and uploaded to the kind cluster with the following commands:

bake --product <product> --image-version <stackable-image-version>
kind load docker-image <image-tagged-with-the-major-version> --name=<name-of-your-test-cluster>

See the output of bake to retrieve the image tag for <image-tagged-with-the-major-version>.