Is there any patch available for CVE-2017-3161 or CVE-2017-3162 that can apply to 2.4.1?
Fedora currently ships Hadoop 2.4.1 in F25, and I'm wondering if there's any way I can get some upstream support to help mitigate this in the Fedora packaging to address: https://bugzilla.redhat.com/show_bug.cgi?id=1448374 Otherwise, I'm going to have to leave these problems in place for F25, until F26 is released (which will ship with Hadoop 2.7.3). Any help to backport or apply a patch to address these would be appreciated. Thanks.