In Apache Hadoop versions 2.6.1 to 2.6.5, 2.7.0 to 2.7.3, and 3.0.0-alpha1, if a file in an encryption zone with access permissions that make it world readable is localized via YARN's localization mechanism, that file will be stored in a world-readable location and can be shared freely with any application that requests to localize that file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache hadoop 2.6.2 |
||
apache hadoop 2.7.0 |
||
apache hadoop 2.6.3 |
||
apache hadoop 2.6.4 |
||
apache hadoop 3.0.0 |
||
apache hadoop 2.7.2 |
||
apache hadoop 2.7.1 |
||
apache hadoop 2.6.1 |
||
apache hadoop 2.6.5 |
||
apache hadoop 2.7.3 |