3 matches found
org.apache.beam:beam-runners-twister2 (>=2.23.0 <=2.74.0), org.apache.ignite:ignite-mesos (>=2.7.0 <=2.12.0) +5 more potentially affected by CVE-2019-0204 via org.apache.mesos:mesos (=1.5.0)
org.apache.mesos:mesos MAVEN version =1.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.mesos:mesos and may be impacted: - org.apache.beam:beam-runners-twister2 =2.23.0, =2.7.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.8.0 Source cves:...
Important: Red Hat Security Advisory: Red Hat Fuse 7.5.0 security update
A minor version update from 7.4 to 7.5 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...
CVE-2019-0204
CVE-2019-0204 affects Apache Mesos (pre-1.4.x, and 1.4.0–1.4.2, 1.5.0–1.5.2, 1.6.0–1.6.1, 1.7.0–1.7.1). A crafted Docker image run as root can overwrite the container runtime init helper binary and/or the Mesos command executor, enabling root-level code execution on the host. Public records in th...