4 matches found
K12772312: Apache Hadoop vulnerability CVE-2017-7669
Security Advisory Description In Apache Hadoop 2.8.0, 3.0.0-alpha1, and 3.0.0-alpha2, the LinuxContainerExecutor runs docker commands as root with insufficient input validation. When the docker feature is enabled, authenticated users can run commands as root. CVE-2017-7669 Impact There is no...
org.apache.hadoop.contrib:hadoop-hdfs-bkjournal (=3.0.0-alpha1), org.apache.hadoop:hadoop-aliyun (=3.0.0-alpha2) +54 more potentially affected by CVE-2017-7669 via org.apache.hadoop:hadoop-common (>=3.0.0-alpha1 <=3.0.0-alpha2)
org.apache.hadoop:hadoop-common MAVEN version =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha1, =3.0.0-alpha2 and more Source cves: CVE-2017-7669 Source advisory:...
CVE-2017-7669
In Apache Hadoop 2.8.0, 3.0.0-alpha1, and 3.0.0-alpha2, the LinuxContainerExecutor runs docker commands as root with insufficient input validation. When the docker feature is enabled, authenticated users can run commands as root...
CVE-2017-7669
CVE-2017-7669 affects Apache Hadoop where the LinuxContainerExecutor runs docker commands as root when the docker feature is enabled, due to insufficient input validation. Affected versions include Hadoop 2.8.0 and 3.0.0-alpha1/alpha2; authenticated users could execute commands as root. The issue...