9 matches found
EUVD-2021-0868
Malware in sbrugna...
EUVD-2022-4876
Malicious code in bioql PyPI...
EUVD-2022-4856
Malicious code in bioql PyPI...
EUVD-2022-4041
Malicious code in bioql PyPI...
EUVD-2022-3516
Malicious code in bioql PyPI...
EUVD-2022-3441
Malicious code in bioql PyPI...
Security Bulletin: Execution Engine for Apache Hadoop is vulnerable to heap-based buffer overflow and remote attacker to bypass security restrictions
Summary bash, curl are used by Execution Engine for Apache Hadoop in all the components. CVE-2022-3715, CVE-2022-32221, CVE-2022-32207, CVE-2023-38545, CVE-2022-22576, CVE-2022-27781, CVE-2021-22926, CVE-2021-22946, CVE-2022-27782, CVE-2023-28319, CVE-2022-32206, CVE-2021-22922, CVE-2023-23916,...
OESA-2024-2350 hadoop security update
Apache Hadoop is a framework that allows for the distributed processing of large data sets across clusters of computers using simple programming models. It is designed to scale up from single servers to thousands of machines, each offering local computation and storage. Security Fixes: Apache...
CVE-2022-25168
Apache Hadoop's FileUtil.unTarFile, File API does not escape the input file name before being passed to the shell. An attacker can inject arbitrary commands. This is only used in Hadoop 3.3 InMemoryAliasMap.completeBootstrapTransfer, which is only ever run by a local user. It has been used in...