[jira] [Created] (YARN-6709) Root privilege escalation in experimental Docker support

Allen Wittenauer (JIRA) Tue, 13 Jun 2017 08:33:34 -0700

Allen Wittenauer created YARN-6709:
--------------------------------------

             Summary: Root privilege escalation in experimental Docker support
                 Key: YARN-6709
                 URL: https://issues.apache.org/jira/browse/YARN-6709
             Project: Hadoop YARN
          Issue Type: Bug
          Components: nodemanager, security
    Affects Versions: 3.0.0-alpha2, 3.0.0-alpha1, 2.8.0
            Reporter: Allen Wittenauer
            Assignee: Varun Vasudev
            Priority: Blocker
             Fix For: 3.0.0-alpha3, 2.8.1



YARN-3853 and friends do not do enough input validation. They allow a user to 
do escalate privileges at root trivially.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Created] (YARN-6709) Root privilege escalation in experimental Docker support

Reply via email to