[
https://issues.apache.org/jira/browse/FLINK-22691?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chesnay Schepler closed FLINK-22691.
------------------------------------
Resolution: Invalid
Our docker images, as published onĀ https://hub.docker.com/_/flink, do not
contain said directory/file, and as such this is not a problem on the Flink
side.
Some other actor outside of our control must've added the file in question;
maybe you're accessing tainted images, maybe your system is already infected.
> On Aliyun ECS, docker deployed flink (1.13.0), which was scanned to Mirai
> DDOS Trojan
> -------------------------------------------------------------------------------------
>
> Key: FLINK-22691
> URL: https://issues.apache.org/jira/browse/FLINK-22691
> Project: Flink
> Issue Type: Bug
> Components: API / Core
> Affects Versions: 1.13.0
> Reporter: Magina.Shan
> Priority: Major
> Attachments: image-2021-05-18-11-45-19-572.png,
> image-2021-05-18-11-46-26-463.png
>
>
> On Aliyun ECS, docker deployed flink (1.13.0), which was scanned to Mirai
> DDOS Trojan. The path is: /opt/flink/Winbox. The Aliyun ticket says it is a
> flink vulnerability.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
