[
https://issues.apache.org/jira/browse/HADOOP-6441?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Owen O'Malley updated HADOOP-6441:
----------------------------------
Attachment: h-6441.20.patch
This is the patch for the yahoo 20 branch that includes HADOOP-6151,
HADOOP-6281, HADOOP-6285, and HADOOP-6441. It should not be applied to Apache.
> Prevent remote CSS attacks in Hostname and UTF-7.
> -------------------------------------------------
>
> Key: HADOOP-6441
> URL: https://issues.apache.org/jira/browse/HADOOP-6441
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Reporter: Owen O'Malley
> Assignee: Owen O'Malley
> Fix For: 0.21.0
>
> Attachments: h-6441.20.patch, h-6441.patch
>
>
> There are currently vulnerabilities for CSS in Hadoop's Web UI that allow CSS
> attacks.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
