admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2018/8xxx/CVE-2018-8029.json

97 lines
4.2 KiB
JSON
Raw Normal View History

- Synchronized data.
2018-03-09 16:03:15 -05:00
{
"-Synchronized-Data."
2019-05-30 16:00:48 +00:00
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"-Synchronized-Data."
2019-03-18 01:34:16 +00:00
"CVE_data_meta": {
"ID": "CVE-2018-8029",
"-Synchronized-Data."
2019-05-30 16:00:48 +00:00
"ASSIGNER": "security@apache.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Apache Hadoop",
"version": {
"version_data": [
{
"version_value": "Apache Hadoop 3.0.0-alpha1 to 3.1.0, 2.9.0 to 2.9.1, 2.2.0 to 2.8.4"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Privilege Escalation"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/17084c09e6dedf60efe08028b429c92ffd28aacc28454e4fa924578a@%3Cgeneral.hadoop.apache.org%3E",
"url": "https://lists.apache.org/thread.html/17084c09e6dedf60efe08028b429c92ffd28aacc28454e4fa924578a@%3Cgeneral.hadoop.apache.org%3E"
"-Synchronized-Data."
2019-05-31 03:01:09 +00:00
},
{
"refsource": "MLIST",
"name": "[hbase-issues] 20190530 [jira] [Commented] (HBASE-22499) Drop the support for several hadoop releases due to CVE-2018-8029",
"url": "https://lists.apache.org/thread.html/a97c53a81e639ca2fc7b8f61a4fcd1842c2a78544041244a7c624727@%3Cissues.hbase.apache.org%3E"
"-Synchronized-Data."
2019-05-31 07:00:49 +00:00
},
{
"refsource": "BID",
"name": "108518",
"url": "http://www.securityfocus.com/bid/108518"
"-Synchronized-Data."
2019-06-04 05:00:46 +00:00
},
{
"refsource": "MLIST",
"name": "[hbase-dev] 20190603 [jira] [Resolved] (HBASE-22499) Drop the support for several hadoop releases due to CVE-2018-8029",
"url": "https://lists.apache.org/thread.html/a0164b87660223a2d491f83c88f905fe1a9fa8dc795148d9b0d968c8@%3Cdev.hbase.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[hbase-issues] 20190603 [jira] [Resolved] (HBASE-22499) Drop the support for several hadoop releases due to CVE-2018-8029",
"url": "https://lists.apache.org/thread.html/0b8d58e02dbd0fb8bf7320c514fe58da1d6728bdc150f1ba04e0d9fc@%3Cissues.hbase.apache.org%3E"
"-Synchronized-Data."
2019-06-17 19:00:47 +00:00
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190617-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190617-0001/"
"-Synchronized-Data."
2020-10-08 07:01:34 +00:00
},
{
"refsource": "MLIST",
"name": "[druid-commits] 20201008 [druid] branch master updated: Suppress CVE-2018-11765 for hadoop dependencies (#10485)",
"url": "https://lists.apache.org/thread.html/r4dddf1705dbedfa94392913b2dad1cd2d1d89040facd389eea0b3510@%3Ccommits.druid.apache.org%3E"
"-Synchronized-Data."
2020-10-08 10:01:33 +00:00
},
{
"refsource": "MLIST",
"name": "[druid-commits] 20201008 [druid] branch 0.20.0 updated: Suppress CVE-2018-11765 for hadoop dependencies (#10485) (#10492)",
"url": "https://lists.apache.org/thread.html/rb21df54a4e39732ce653d2aa5672e36a792b59eb6717f2a06bb8d02a@%3Ccommits.druid.apache.org%3E"
"-Synchronized-Data."
2019-05-30 16:00:48 +00:00
}
]
"-Synchronized-Data."
2019-03-18 01:34:16 +00:00
},
"description": {
"description_data": [
{
"lang": "eng",
"-Synchronized-Data."
2019-05-30 16:00:48 +00:00
"value": "In Apache Hadoop versions 3.0.0-alpha1 to 3.1.0, 2.9.0 to 2.9.1, and 2.2.0 to 2.8.4, a user who can escalate to yarn user can possibly run arbitrary commands as root user."
"-Synchronized-Data."
2019-03-18 01:34:16 +00:00
}
]
}
}
Reference in New Issue Copy Permalink