Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-26031

Опубликовано: 16 нояб. 2023
Источник: nvd
CVSS3: 7.5
EPSS Средний

Описание

Relative library resolution in linux container-executor binary in Apache Hadoop 3.3.1-3.3.4 on Linux allows local user to gain root privileges. If the YARN cluster is accepting work from remote (authenticated) users, this MAY permit remote users to gain root privileges.

Hadoop 3.3.0 updated the " YARN Secure Containers https://hadoop.apache.org/docs/stable/hadoop-yarn/hadoop-yarn-site/SecureContainer.html " to add a feature for executing user-submitted applications in isolated linux containers.

The native binary HADOOP_HOME/bin/container-executor is used to launch these containers; it must be owned by root and have the suid bit set in order for the YARN processes to run the containers as the specific users submitting the jobs.

The patch " YARN-10495 https://issues.apache.org/jira/browse/YARN-10495 . make the rpath of container-executor configurable" modified the library loading path for loading .so files from "$ORIGIN/" to ""$ORIGIN/:../lib/native/". This is the a path through which

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:apache:hadoop:*:*:*:*:*:*:*:*
Версия от 3.3.1 (включая) до 3.3.4 (включая)

EPSS

Процентиль: 95%
0.16285
Средний

7.5 High

CVSS3

Дефекты

CWE-426
CWE-426

Связанные уязвимости

redhat логотип

CVE-2023-26031

CVSS3: 7.5
redhat
около 2 лет назад

Relative library resolution in linux container-executor binary in Apache Hadoop 3.3.1-3.3.4 on Linux allows local user to gain root privileges. If the YARN cluster is accepting work from remote (authenticated) users, this MAY permit remote users to gain root privileges. Hadoop 3.3.0 updated the " YARN Secure Containers https://hadoop.apache.org/docs/stable/hadoop-yarn/hadoop-yarn-site/SecureContainer.html " to add a feature for executing user-submitted applications in isolated linux containers. The native binary HADOOP_HOME/bin/container-executor is used to launch these containers; it must be owned by root and have the suid bit set in order for the YARN processes to run the containers as the specific users submitting the jobs. The patch " YARN-10495 https://issues.apache.org/jira/browse/YARN-10495 . make the rpath of container-executor configurable" modified the library loading path for loading .so files from "$ORIGIN/" to ""$ORIGIN/:../lib/native/". This is the a path through which...

debian логотип

CVE-2023-26031

CVSS3: 7.5
debian
около 2 лет назад

Relative library resolution in linux container-executor binary in Apac ...

github логотип

GHSA-94jh-j374-9r3j

CVSS3: 7.5
github
около 2 лет назад

Apache Hadoop allows local user to gain root privileges

fstec логотип

BDU:2023-08364

CVSS3: 7.5
fstec
больше 3 лет назад

Уязвимость платформы для распределенной разработки и выполнения программ Apache Hadoop, связанная с использованием ненадёжного пути поиска, позволяющая нарушителю выполнять команды с привилегиями root

EPSS

Процентиль: 95%
0.16285
Средний

7.5 High

CVSS3

Дефекты

CWE-426
CWE-426