Created 03-01-2023 11:10 AM
Hi
Regarding python updates, how can they affect cloudera?
there is a security update
RHSA-2023:0833 - Security Advisory
Description
A vulnerability was discovered in Python. A quadratic algorithm exists when processing inputs to the IDNA (RFC 3490) decoder, such that a crafted unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor, which could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied hostname.
Do these types of updates affect cloudera?
Created 03-31-2024 05:51 AM
Hello @Emanuel_MXN
Thank you for brining this
What version of CDP CM are you using? What is the exact python version you are upgrading?
In general we need to ensure that target python version should be compatible with CM CDP and then we should be good
Created 04-11-2024 09:58 PM
@upadhyayk04 Did the response assist in resolving your query? If it did, kindly mark the relevant reply as the solution, as it will aid others in locating the answer more easily in the future. However, if you still have concerns, could you please provide the information that @upadhyayk04 has requested?
Regards,
Vidya Sargur,