Security Bulletin: Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights (IBM Open Platform with Apache Hadoop) CVE-2017-3161, CVE-2017-3162

Summary Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights IBM Open Platform with Apache Hadoop CVE-2017-3161, CVE-2017-3162 Vulnerability Details CVE-ID: CVE-2017-3161 Description: Apache Hadoop is vulnerable to...

Photon OS 1.0: Cassandra / Libxml2 / Linux / Ruby PHSA-2017-0029 (deprecated)

An update of ruby,cassandra,linux,libxml2 packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0029. The text itself is copyright C...

CVE-2017-3161

CVE-2017-3161 affects Apache Hadoop’s HDFS web UI (pre-2.7.0). The vulnerability is a cross-site scripting flaw caused by an unescaped query parameter, enabling a remote attacker to run scripts in the victim’s browser (potential cookie theft) via specially crafted URLs. The connected documents co...