VYPR
High severityNVD Advisory· Published Oct 4, 2019· Updated Aug 5, 2024

CVE-2018-11768

CVE-2018-11768

Description

In Apache Hadoop 3.1.0 to 3.1.1, 3.0.0-alpha1 to 3.0.3, 2.9.0 to 2.9.1, and 2.0.0-alpha to 2.8.4, the user/group information can be corrupted across storing in fsimage and reading back from fsimage.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.hadoop:hadoop-mainMaven
>= 2.2.0, < 2.8.52.8.5
org.apache.hadoop:hadoop-mainMaven
>= 2.9.0, < 2.9.22.9.2
org.apache.hadoop:hadoop-mainMaven
>= 3.0.0, < 3.1.13.1.1

Affected products

2

Patches

Vulnerability mechanics

References

23

News mentions

0

No linked articles in our index yet.