5 matches found
Security Bulletin: Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights (IBM Open Platform with Apache Hadoop) CVE-2017-3161, CVE-2017-3162
Summary Security vulnerabilities have been identified in Open Source Apache Hadoop that are dependencies for IBM InfoSphere BigInsights IBM Open Platform with Apache Hadoop CVE-2017-3161, CVE-2017-3162 Vulnerability Details CVE-ID: CVE-2017-3161 Description: Apache Hadoop is vulnerable to...
Photon OS 1.0: Cassandra / Libxml2 / Linux / Ruby PHSA-2017-0029 (deprecated)
An update of ruby,cassandra,linux,libxml2 packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0029. The text itself is copyright C...
CVE-2017-3162
HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace. The NameNode is provided as a query parameter that is not validated in Apache Hadoop before 2.7.0...
CVE-2017-3162
Apache Hadoop CVE-2017-3162: A vulnerability in the HDFS namespace browsing flow where the DataNode servlet accepts a NameNode URL as a query parameter without validation, allowing an attacker to bypass security restrictions. Affected software includes Hadoop versions prior to 2.7.0; the issue st...
Apache Hadoop DataNode Missed Validation Vulnerability
HDFS clients interact with a servlet on the DataNode to browse the HDFS namespace. The NameNode is provided as a query parameter that is not validated. Apache Hadoop versions 2.6.x and earlier are affected. CVE-2017-3162: Apache Hadoop DataNode web UI vulnerability Severity: Important Vendor: The...