You are viewing a plain text version of this content. The canonical link for it is here.
Posted to yarn-issues@hadoop.apache.org by "Varun Saxena (JIRA)" <ji...@apache.org> on 2017/03/28 20:37:41 UTC
[jira] [Updated] (YARN-6352) Header injections are possible in
application proxy servlet
[ https://issues.apache.org/jira/browse/YARN-6352?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Varun Saxena updated YARN-6352:
-------------------------------
Summary: Header injections are possible in application proxy servlet (was: Header injections are possible in the application proxy servlet)
> Header injections are possible in application proxy servlet
> -----------------------------------------------------------
>
> Key: YARN-6352
> URL: https://issues.apache.org/jira/browse/YARN-6352
> Project: Hadoop YARN
> Issue Type: Bug
> Components: resourcemanager, security
> Affects Versions: 2.8.0, 2.7.3
> Reporter: Naganarasimha G R
> Assignee: Naganarasimha G R
> Attachments: headerInjection.png, YARN-6352.001.patch, YARN-6352-branch-2.002.patch, YARN-6352-branch-2.003.patch
>
>
> This issue was found in WVS security tool.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
---------------------------------------------------------------------
To unsubscribe, e-mail: yarn-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: yarn-issues-help@hadoop.apache.org