Back to search
CVE-2018-11768
Published: Oct 4, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.
| Vendor | Product | Versions |
|---|---|---|
n/a | Apache Hadoop | affected Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, 2.0.0-alpha to 2.8.4 |
References
[hadoop-general] 20191004 Re:CVE-2018-11768: HDFS FSImage Corruption
mailing-list
x_refsource_MLIST
[hadoop-hdfs-dev] 20191004 Re:CVE-2018-11768: HDFS FSImage Corruption
mailing-list
x_refsource_MLIST
[hadoop-hdfs-dev] 20191004 Re: CVE-2018-11768: HDFS FSImage Corruption
mailing-list
x_refsource_MLIST
[hadoop-hdfs-dev] 20191006 Re: CVE-2018-11768: HDFS FSImage Corruption
mailing-list
x_refsource_MLIST
[lucene-dev] 20191029 Re: CVE-2018-11768 in regards to Solr
mailing-list
x_refsource_MLIST
[lucene-dev] 20191029 CVE-2018-11768 in regards to Solr
mailing-list
x_refsource_MLIST
[lucene-dev] 20191031 RE: CVE-2018-11768 in regards to Solr
mailing-list
x_refsource_MLIST
[flink-dev] 20200806 Dependency vulnerabilities with Apache Flink 1.10.1 version
mailing-list
x_refsource_MLIST
[flink-user] 20200806 Dependency vulnerabilities with Apache Flink 1.10.1 version
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now