Hello,
We are using Apache Flink 1.7.2 version. During our security scans following
issues are reported by our scan tool. Please let us know your comments on these
issues.
[1] 150085 Slow HTTP POST vulnerability
Severity Potential Vulnerability - Level 3
Group Information Disclosure
Threat
The
Hi,
I am trying to execute Wordcount.jar in Flink 1.8.1 with Hadoop version 2.6.5.
HDFS is enabled with Kerberos+SSL. While writing output to HDFS, facing the
below exception and job will be failed. Please let me know if any suggestions
to debug this issue.
Caused by: org.apache.flink.runtime.
Hello,
We are using Apache Flink 1.12 version. Due to log4j security
vulnerabilities(CVE-2021-44228) we have upgraded to Flink 1.12.7 which contains
the fix for CVE-2021-44228(Critical) and CVE-2021-45046(Critical). Later two
more vulnerabilities are reported CVE-2021-45105(Moderate) and
CVE-2
don't think there is a plan to release 1.12.7 for this. But I think you could
build it from the source.[1]
[1]
https://github.com/apache/flink/tree/release-1.12#building-apache-flink-from-source
Best,
Guowei
On Wed, Jan 19, 2022 at 7:11 PM V N, Suchithra (Nokia - IN/Bangalore) <
s
Security Team
Sent: Thursday, August 6, 2020 1:08 PM
To: V N, Suchithra (Nokia - IN/Bangalore)
Cc: Jash, Shaswata (Nokia - IN/Bangalore) ; Prabhala,
Anuradha (Nokia - IN/Bangalore) ; Badagandi,
Srinivas B. (Nokia - IN/Bangalore)
Subject: Re: Security vulnerabilities with Apache Flink 1.10.1
