[jira] [Created] (KUDU-3428) ranger has some vulnerability in 1.12.0

Wed, 07 Dec 2022 19:06:14 -0800 

yejiabao_h created KUDU-3428:
--------------------------------

             Summary: ranger has some vulnerability in 1.12.0
                 Key: KUDU-3428
                 URL: https://issues.apache.org/jira/browse/KUDU-3428
             Project: Kudu
          Issue Type: Bug
          Components: ranger
    Affects Versions: 1.16.0, 1.15.0, 1.14.0, 1.13.0, 1.12.0
            Reporter: yejiabao_h


ranger has some vulnerability in 2.1.0:

1、[CVE-2022-22965|https://nvd.nist.gov/vuln/detail/cve-2022-22965] 
([RANGER-3691|https://issues.apache.org/jira/browse/RANGER-3691?jql=project%20%3D%20RANGER%20AND%20text%20~%20%22CVE-2022-22965%22%20ORDER%20BY%20priority%20DESC%2C%20updated%20DESC])

2、[CVE-2021-44228|https://nvd.nist.gov/vuln/detail/CVE-2021-44228] 
([RANGER-3785|https://issues.apache.org/jira/browse/RANGER-3785?jql=project%20%3D%20RANGER%20AND%20text%20~%20%22CVE-2021-44228%22%20ORDER%20BY%20priority%20DESC%2C%20updated%20DESC])

and is repaired in 2.3.0, so I guess we should upgrade the ranger.

 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to