Re: CVE-2016-5393: Apache Hadoop Privilege escalation vulnerability

Thanks for the note Yongjun! Does HADOOP-13434 fix the problem? On Mon, Nov 28, 2016 at 4:04 PM Yongjun Zhang wrote: > Hi, > > Please see below the official announcement of a critical security > vulnerability that's discovered and subsequently

Re: CVE-2016-5393: Apache Hadoop Privilege escalation vulnerability

hould upgrade to 2.7.3 > > 2.6.x users should upgrade to 2.6.5 > > > > Impact: > > A remote user who can authenticate with the HDFS NameNode can possibly run > arbitrary commands with the same privileges as HDFS service. > > > > Credit: > > This issue was discovered by Freddie Rice. > > -- > -- Zhe Zhang Apache Hadoop Committer http://zhe-thoughts.github.io/about/ | @oldcap

Re: [ANNOUNCE] New committer: Konstantinos Karanasos

> > To unsubscribe, e-mail: general-unsubscr...@hadoop.apache.org > > For additional commands, e-mail: general-h...@hadoop.apache.org > > > > > -- Zhe Zhang Apache Hadoop Committer http://zhe-thoughts.github.io/about/ | @oldcap

Re: [ANNOUNCE] New Hadoop committer : Rakesh R

; > Hi All, > > > > > > On behalf of the Apache Hadoop PMC, I am very pleased to announce that > > > Rakesh R has been elected as a committer on the Apache Hadoop project > > > recognizing his continued contributions to the project so far. > > > > > &g

Re: [ANNOUNCE] New Apache Hadoop committer: Jonathan Hung

- > To unsubscribe, e-mail: general-unsubscr...@hadoop.apache.org > For additional commands, e-mail: general-h...@hadoop.apache.org > > -- Zhe Zhang Apache Hadoop Committer http://zhe-thoughts.github.io/about/ | @oldcap

Re: [ANNOUNCE] New Apache Hadoop committer: Erik Krogen

op committer. > Please join me to congratulate Erik with this well deserved status! > > Thanks, > --Konstantin > -- Zhe Zhang Apache Hadoop Committer http://zhe-thoughts.github.io/about/ | @oldcap