CVE-2018-11766: Apache Hadoop privilege escalation vulnerability

CVE-2018-11766: Apache Hadoop privilege escalation vulnerability Severity: Critical Vendor: The Apache Software Foundation Versions Affected: Apache Hadoop versions from 2.7.4 to 2.7.6 Description: In Apache Hadoop 2.7.4 to 2.7.6, the security fix for CVE-2016-6811 is incomplete. A user who

get a spark job full log via yarn api (instead of yarn cli)

On HDP3, I cannot get the full log of a failing spark job by using yarn api: curl -k -u guest:"" -X GET https:// myhost.com/gateway/ui/resourcemanager/v1/cluster/apps/