Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-7455

quote_and_append_arg can overflow buffer

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.9.0, 3.0.0
    • Fix Version/s: 3.1.0, 2.10.0, 2.9.1, 3.0.1
    • Component/s: nodemanager
    • Labels:
      None
    • Target Version/s:
    • Hadoop Flags:
      Reviewed

      Description

      While reviewing YARN-7197 I noticed that add_mounts in docker_util.c has a potential buffer overflow since tmp_buffer is only 1024 bytes which may not be sufficient to hold the specified mount path.

        Attachments

        1. YARN-7455.003.patch
          10 kB
          Jim Brennan
        2. YARN-7455.002.patch
          10 kB
          Jim Brennan
        3. YARN-7455.001.patch
          9 kB
          Jim Brennan

          Activity

            People

            • Assignee:
              Jim_Brennan Jim Brennan
              Reporter:
              jlowe Jason Lowe
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: