org.apache.oozie:oozie-tools@4.3.0 vulnerabilities

latest version

5.2.1
latest non vulnerable version

5.2.1
first published

9 years ago
latest version published

3 years ago
licenses detected
- Apache-2.0
  [4.1.0,)
package manager

View on Maven Repository

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.apache.oozie:oozie-tools package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Race Condition org.apache.oozie:oozie-tools is a tools of a system to define, manage, schedule, and execute complex Hadoop workloads via web services. Affected versions of this package are vulnerable to Race Condition via the `OozieSharelibCLI` tool. It allows a malicious attacker to replace the files in Oozie's sharelib during it's creation. How to fix Race Condition? Upgrade `org.apache.oozie:oozie-tools` to version 5.2.1 or higher.	[,5.2.1)

Race Condition

org.apache.oozie:oozie-tools is a tools of a system to define, manage, schedule, and execute complex Hadoop workloads via web services.

Affected versions of this package are vulnerable to Race Condition via the OozieSharelibCLI tool. It allows a malicious attacker to replace the files in Oozie's sharelib during it's creation.

How to fix Race Condition?

Upgrade org.apache.oozie:oozie-tools to version 5.2.1 or higher.

[,5.2.1)

Go back to all versions of this package

org.apache.oozie:oozie-tools@4.3.0 vulnerabilities

latest version

latest non vulnerable version

first published

latest version published

licenses detected

package manager

Direct Vulnerabilities