[jira] [Commented] (HIVE-22738) CVE-2019-0205

Dongjoon Hyun (Jira) Wed, 21 Feb 2024 08:39:05 -0800


    [ 
https://issues.apache.org/jira/browse/HIVE-22738?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17819320#comment-17819320
 ]


Dongjoon Hyun commented on HIVE-22738:
--------------------------------------

For the record, THRIFT-4053 fixed Java implementation for CVE-2019-0205 at 
0.11.0.

> CVE-2019-0205
> -------------
>
>                 Key: HIVE-22738
>                 URL: https://issues.apache.org/jira/browse/HIVE-22738
>             Project: Hive
>          Issue Type: Bug
>          Components: Thrift API
>            Reporter: Laurent Goujon
>            Priority: Major
>
> There's has been a CVE issued for a Thrift vulnerability which might impact 
> Hive. The CVE is 
> [CVE-2019-0205|https://nvd.nist.gov/vuln/detail/CVE-2019-0205], impacts both 
> clients and servers, and might cause a denial of service through an infinite 
> loop.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (HIVE-22738) CVE-2019-0205

Reply via email to