You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-commits@hadoop.apache.org by iw...@apache.org on 2022/06/15 22:55:12 UTC
[hadoop-site] branch asf-site updated: Add CVE-2021-37404 description
This is an automated email from the ASF dual-hosted git repository.
iwasakims pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/hadoop-site.git
The following commit(s) were added to refs/heads/asf-site by this push:
new 717ad806df Add CVE-2021-37404 description
717ad806df is described below
commit 717ad806df65a0c7252016d11b78e33e49e58e8e
Author: Masatake Iwasaki <iw...@apache.org>
AuthorDate: Wed Jun 15 22:53:54 2022 +0000
Add CVE-2021-37404 description
---
content/cve_list.html | 14 +++++++++++++-
src/cve_list.md | 15 ++++++++++++++-
2 files changed, 27 insertions(+), 2 deletions(-)
diff --git a/content/cve_list.html b/content/cve_list.html
index 398d434574..5da02bc134 100644
--- a/content/cve_list.html
+++ b/content/cve_list.html
@@ -178,12 +178,24 @@ can escalate to yarn user and cannot escalate to root user, remove the
permission to escalate to yarn user from them.</p>
<ul>
<li><strong>Versions affected</strong>: 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, 3.3.0 to 3.3.1</li>
-<li><strong>Fixed versions</strong>: 3.2.3, 3.3.2</li>
+<li><strong>Fixed versions</strong>: 2.10.2, 3.2.3, 3.3.2</li>
<li><strong>Impact</strong>: privilege escalation</li>
<li><strong>Reporter</strong>: Hideyuki Furue</li>
<li><strong>Reported Date</strong>: 2021/05/05</li>
<li><strong>Issue Announced</strong>: 2022/06/15 (<a href="https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5">general@hadoop</a>)</li>
</ul>
+<h2 id="cve-2021-37404httpcvemitreorgcgi-bincvenamecginamecve-2021-37404-heap-buffer-overflow-in-libhdfs-native-library"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37404">CVE-2021-37404</a> Heap buffer overflow in libhdfs native library</h2>
+<p>There is a potential heap buffer overflow in libhdfs native code.
+Opening a file path provided by user without validation may result in
+a denial of service or arbitrary code execution.</p>
+<ul>
+<li><strong>Versions affected</strong>: 2.9.0 to 2.10.1, 3.0.0 to 3.1.4, 3.2.0 to 3.2.2, 3.3.0 to 3.3.1</li>
+<li><strong>Fixed versions</strong>: 2.10.2, 3.2.3, 3.3.2</li>
+<li><strong>Impact</strong>: denial of service or arbitrary code execution</li>
+<li><strong>Reporter</strong>: Igor Chervatyuk</li>
+<li><strong>Reported Date</strong>: 2021/04/04</li>
+<li><strong>Issue Announced</strong>: 2022/06/11 (<a href="https://lists.apache.org/thread/36k6f4s4ff97tgo4wl9681vtcp7dsg06">general@hadoop</a>)</li>
+</ul>
<h2 id="cve-2022-26612httpcvemitreorgcgi-bincvenamecginamecve-2022-26612-arbitrary-file-write-during-untar-on-windows"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26612">CVE-2022-26612</a> Arbitrary file write during untar on Windows</h2>
<p>In Apache Hadoop, The <code>unTar</code> function uses <code>unTarUsingJava</code> function on Windows and the built-in tar utility on Unix and other OSes. As a result, a TAR entry may create a symlink under the expected extraction directory which points to an external directory. A subsequent TAR entry may extract an arbitrary file into the external directory using the symlink name. This however would be caught by the same <code>targetDirPath</code> check on Unix because of the <code [...]
<p>Users of the affected versions should apply either of the following mitigations:</p>
diff --git a/src/cve_list.md b/src/cve_list.md
index 9e31d31ba0..5ac0851474 100644
--- a/src/cve_list.md
+++ b/src/cve_list.md
@@ -48,12 +48,25 @@ can escalate to yarn user and cannot escalate to root user, remove the
permission to escalate to yarn user from them.
- **Versions affected**: 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, 3.3.0 to 3.3.1
-- **Fixed versions**: 3.2.3, 3.3.2
+- **Fixed versions**: 2.10.2, 3.2.3, 3.3.2
- **Impact**: privilege escalation
- **Reporter**: Hideyuki Furue
- **Reported Date**: 2021/05/05
- **Issue Announced**: 2022/06/15 ([general@hadoop](https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5))
+## [CVE-2021-37404](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37404) Heap buffer overflow in libhdfs native library
+
+There is a potential heap buffer overflow in libhdfs native code.
+Opening a file path provided by user without validation may result in
+a denial of service or arbitrary code execution.
+
+- **Versions affected**: 2.9.0 to 2.10.1, 3.0.0 to 3.1.4, 3.2.0 to 3.2.2, 3.3.0 to 3.3.1
+- **Fixed versions**: 2.10.2, 3.2.3, 3.3.2
+- **Impact**: denial of service or arbitrary code execution
+- **Reporter**: Igor Chervatyuk
+- **Reported Date**: 2021/04/04
+- **Issue Announced**: 2022/06/11 ([general@hadoop](https://lists.apache.org/thread/36k6f4s4ff97tgo4wl9681vtcp7dsg06))
+
## [CVE-2022-26612](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26612) Arbitrary file write during untar on Windows
In Apache Hadoop, The `unTar` function uses `unTarUsingJava` function on Windows and the built-in tar utility on Unix and other OSes. As a result, a TAR entry may create a symlink under the expected extraction directory which points to an external directory. A subsequent TAR entry may extract an arbitrary file into the external directory using the symlink name. This however would be caught by the same `targetDirPath` check on Unix because of the `getCanonicalPath` call. However on Windo [...]
---------------------------------------------------------------------
To unsubscribe, e-mail: common-commits-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-commits-help@hadoop.apache.org