CVE-2022-45048: Apache Ranger: code execution vulnerability in policy expressions

Affected versions: - Apache Ranger 2.3.0 Description: Authenticated users with appropriate privileges can create policies having expressions that can exploit code execution vulnerability. This issue affects Apache Ranger: 2.3.0. Credit: g1831767...@163.com (finder) References:

CVE-2022-34271: Apache Atlas: zip path traversal in import functionality

Severity: moderate Description: A vulnerability in import module of Apache Atlas allows an authenticated user to write to web server filesystem. This issue affects Apache Atlas versions from 0.8.4 to 2.2.0. This issue is being tracked as ATLAS-4622 Credit: Huangzhicong (finder)

[ANNOUNCE] Apache Atlas 2.3.0 released

Hi All, The Apache Atlas team is happy to announce the release of Apache Atlas - version 2.3.0. Atlas is a scalable and extensible set of core foundational governance services – enabling enterprises to effectively and efficiently meet their compliance requirements within Hadoop and allows

[ANNOUNCE] Apache Ranger response to incorrect analyst report on Cloud data security

at https://blogs.apache.org/foundation/entry/apache-ranger-response-to-incorrect . Madhan Neethiraj for the Apache Ranger PMC Apache Ranger™ is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform and beyond. For more information, visit http

[ANNOUNCE] Apache Ranger 2.1.0 released

All, Apache Ranger team is happy to announce the release of Apache Ranger 2.1.0. Apache Ranger is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform and beyond. Apache Ranger 2.1.0 contains a number of new features, improvements and bug fixes.

[ANNOUNCE] Apache Atlas 2.1.0 released

All, Apache Atlas team is happy to announce the release of Apache Atlas 2.1.0. Atlas is a scalable and extensible set of core foundational governance services – enabling enterprises to effectively and efficiently meet their compliance requirements within Hadoop and allows integration with the

[CVE-2019-10070] Apache Atlas Stored XSS Vulnerability

Hello, Please find below details on CVE fixed in Apache Atlas releases 0.8.4 and 1.2.0. - CVE-2019-10070:    Apache Atlas Stored XSS Vulnerability in the search functionality Severity:    

[ANNOUNCE] Apache Atlas 1.0.0 released

Hi All, The Apache Atlas team is happy to announce the release of Apache Atlas - version 1.0.0. Atlas is a scalable and extensible set of core foundational governance services – enabling enterprises to effectively and efficiently meet their compliance requirements within Hadoop and

[ANNOUNCE] Apache Atlas 0.8-incubating released

Hi All, The Apache Atlas team is happy to announce the release of Apache Atlas - version 0.8-incubating. Atlas is a scalable and extensible set of core foundational governance services - enabling enterprises to effectively and efficiently meet their compliance requirements within Hadoop

[ANNOUNCE] Apache Atlas 0.7.1-incubating released

Hi All, The Apache Atlas team is happy to announce the release of Apache Atlas - version 0.7.1-incubating. Atlas is a scalable and extensible set of core foundational governance services - enabling enterprises to effectively and efficiently meet their compliance requirements within