[CVE-2020-1952] Apache IoTDB (incubating) Remote Code execution vulnerability

Severity: Important Vendor: The Apache Software Foundation Versions Affected: IoTDB 0.9.0 to 0.9.1 IoTDB 0.8.0 to 0.8.2 Description: When starting IoTDB, the JMX port 31999 is exposed with no certification. Then, clients could execute code remotely. Mitigation: 0.8.x, 0.9.0, and 0.9.1

[ANNOUNCE] Apache IoTDB (incubating) 0.9.2 released

The Apache IoTDB team is pleased to announce the release of Apache IoTDB (incubating) 0.9.2. Apache IoTDB (incubating) (Database for Internet of Things) is an integrated data management engine designed for timeseries data. It provides users with services for data collection, storage and

Re: The "latest" tag of IoTDB docker image has moved to "0.9.1-jre8"

Hi Justin, Thanks for reminding me. Yes according to the definition, the docker image is a kind of "compiled-package". Best, --- Xiangdong Huang School of Software, Tsinghua University 黄向东 清华大学 软件学院 Justin Mclean 于2020年4月26日周日 下午9:15写道： > HI, > > > The

Re: The "latest" tag of IoTDB docker image has moved to "0.9.1-jre8"

HI, > The docker image is made by the released binary file [1]. Even so, do we > still need a vote? Well it depends on what you changed and where else you put it [1][2][3][4] Thanks, Justin 1. http://www.apache.org/legal/release-policy.html#release-definition 2.

Re: The "latest" tag of IoTDB docker image has moved to "0.9.1-jre8"

Hi Justin, The docker image is made by the released binary file [1]. Even so, do we still need a vote? [1] https://www-us.apache.org/dist/incubator/iotdb/0.9.1-incubating/apache-iotdb-0.9.1-incubating-bin.zip Best, --- Xiangdong Huang School of Software, Tsinghua

Re: The "latest" tag of IoTDB docker image has moved to "0.9.1-jre8"

Hi, > Julian reported that there were some issues in our docker image with tag > "0.9.1" [1] (though I did not reproduce any issues). > And, he provided a fixed version [2]. I tried the fixed version and it > works also well. Therefore, I uploaded it to docker hub tag with > "0.9.1-jre8" [3]. If

The "latest" tag of IoTDB docker image has moved to "0.9.1-jre8"

Hi, Julian reported that there were some issues in our docker image with tag "0.9.1" [1] (though I did not reproduce any issues). And, he provided a fixed version [2]. I tried the fixed version and it works also well. Therefore, I uploaded it to docker hub tag with "0.9.1-jre8" [3]. To avoid

I've submitted a PR for issue [IOTDB-611]

Hi, all I've add a new System Design document chapter to introduce fundamentals of IoTDB query design. Here's the PR url: https://github.com/apache/incubator-iotdb/pull/1101 This chapter introduces some basic concepts, terms and things to pay attention in IoTDB Query design. Developers and

[BUILD-STABLE]: Job 'IoTDB-Pipeline/master [master] [346]'

BUILD-STABLE: Job 'IoTDB-Pipeline/master [master] [346]': Is back to normal.