7 matches found
Security Bulletin: Multiple vulnerabilities in Apache Hadoop affect Apache Solr shipped with IBM Operations Analytics - Log Analysis
Summary There are vulnerabilities in various versions of Apache Hadoop that affect Apache Solr. The vulnerabilities are in Vulnerability Details section. Vulnerability Details CVEID: CVE-2018-11766 DESCRIPTION: Apache Hadoop could allow a local attacker to gain elevated privileges on the system. ...
Fedora 29 : hadoop (2018-beec9e3fda)
Bug fix and upgrade to version 2.7.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
Fedora Update for hadoop FEDORA-2018-f1f44e4c6d
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apache Hadoop < 2.7.7 Privilege Escalation Vulnerability
In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrigh...
CVE-2018-11766
In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user...
CVE-2018-11766
In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who can escalate to yarn user can possibly run arbitrary commands as root user...
CVE-2018-11766
CVE-2018-11766 affects Apache Hadoop 2.7.4–2.7.6; the security fix for CVE-2016-6811 is incomplete, allowing a user who can escalate to the yarn user to possibly execute arbitrary commands as root. The IBM bulletin lists a base score of 8.4 (high) and confirms the vulnerable scenario but does not...