Vihang Karajgaonkar created HIVE-16035:
------------------------------------------
Summary: Investigate potential SQL injection vulnerability in Hive
Key: HIVE-16035
URL: https://issues.apache.org/jira/browse/HIVE-16035
Project: Hive
Issue Type: Bug
Components: Hive
Reporter: Vihang Karajgaonkar
Assignee: Vihang Karajgaonkar
Some of the queries in ObjectStore and MetastoreDirectSql classes append
Strings variables directly to the query text. This JIRA is to investigate the
possible vulnerabilities and fix them using parameterized queries.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
