[ https://issues.apache.org/jira/browse/MAPREDUCE-3804?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Dave Thompson updated MAPREDUCE-3804: ------------------------------------- Attachment: MAPREDUCE_3804_br_0.23.0.patch Patch to prevent cross scripting vulnerability through webapp interface. > yarn webapp interface vulnerable to cross scripting attacks > ----------------------------------------------------------- > > Key: MAPREDUCE-3804 > URL: https://issues.apache.org/jira/browse/MAPREDUCE-3804 > Project: Hadoop Map/Reduce > Issue Type: Bug > Components: jobhistoryserver, resourcemanager > Affects Versions: 0.23.0 > Reporter: Dave Thompson > Assignee: Dave Thompson > Fix For: 0.23.1 > > Attachments: MAPREDUCE_3804_br_0.23.0.patch > > > Yarn webapp interface may be vulnerable to certain cross scripting attacks, > injected through URL request. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira