FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

hadoop2 -- unauthorized disclosure of data vulnerability

Affected packages
2.6 <= hadoop2 < 2.7

Details

VuXML ID 5dd39f26-ed68-11e5-92ce-002590263bf5
Discovery 2016-02-15
Entry 2016-03-19

Arun Suresh reports:

RPC traffic from clients, potentially including authentication credentials, may be intercepted by a malicious user with access to run tasks or containers on a cluster.

References

CVE Name CVE-2015-1776
URL http://mail-archives.apache.org/mod_mbox/hadoop-general/201602.mbox/browser