hadoop-general mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher <ctubb...@apache.org>
Subject CVE-2017-3161/CVE-2017-3162 question
Date Fri, 05 May 2017 16:55:51 GMT
Is there any patch available for CVE-2017-3161 or CVE-2017-3162 that can
apply to 2.4.1?

Fedora currently ships Hadoop 2.4.1 in F25, and I'm wondering if there's
any way I can get some upstream support to help mitigate this in the Fedora
packaging to address: https://bugzilla.redhat.com/show_bug.cgi?id=1448374

Otherwise, I'm going to have to leave these problems in place for F25,
until F26 is released (which will ship with Hadoop 2.7.3).

Any help to backport or apply a patch to address these would be appreciated.


  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message