Cumulative hotfix CDP PvC Base 7.1.7.2023-1 (SP2 cumulative hotfix8)

Know more about the cumulative hotfixes 8 for 7.1.7 SP2. This cumulative hotfix is released on May 24, 2023.

Following are the list of fixes that were shipped for CDP private cloud-base version 7.1.7-1.cdh7.1.7.p2023.41215412

  • KT-7467: Keytrustee - Upgrade Spring-boot to 2.11+ or 3.0.6+ due to CVE-2023-20873
  • COMPX-14147: YARN-11312 [UI2] Refresh buttons don't work after EmberJS upgrade
  • CDPD-56213: Fix sql patch 65 syntax issue for oracle db
  • CDPD-56017: Backport HDDS-8385. Ozone can't process snapshot when service UID > 2097151
  • CDPD-56011: ServiceTagsProcessor fails to handle update of an existing Service-Resource
  • CDPD-55893: Backport ORC-1041 to Impala native-toolchain compiled by gcc-7
  • CDPD-55877: Ranger - Upgrade Spring Security to 5.7.8+/5.8.3+/6.0.3+ due to CVE-2023-20862
  • CDPD-55757: Backport IMPALA-12006 to 7.1.7 SP2 CHF
  • CDPD-55716: Backport PHOENIX-6881 to 7.1.7 SP2
  • CDPD-55715: Backport PHOENIX-5066 to 7.1.7 SP2
  • CDPD-55714: Backport PHOENIX-6823 to 7.1.7 SP2
  • CDPD-55662: Backport HIVE-27116 to CDH-7.1.7.2000
  • CDPD-55658: Backport IMPALA-11406 to 7.1.7 SP2: Incorrect duration logged in "Authorization check took n ms"
  • CDPD-55610: Ranger - Upgrade Nimbus-JOSE-JWT to 9.24 due to CVEs coming from json-smart
  • CDPD-55609: Schema Registry - Upgrade Nimbus-JOSE-JWT to 9.24 due to CVEs coming from json-smart
  • CDPD-55602: Backport CDPD-26858 to 7.1.7 SP2 and 7.1.8
  • CDPD-55599: Backport IMPALA-9857 to 7.1.7 SP2: Batching of consecutive partition events
  • CDPD-55574: Test container image can not be built from debian:jessie-slim
  • CDPD-55418: Hadoop - Upgrade json-smart to 2.4.10 due to CVE-2023-1370
  • CDPD-55335: Backport HIVE-23892 to CDH-7.1.7.2000
  • CDPD-55285: Backport TEZ-4041 to CDH-7.1.7.2000
  • CDPD-55158: Backport PARQUET-2258 to 7.1.7 SP2: HS2 OOM when a certain amount of predicates
  • CDPD-53810: Ozone - Upgrade Spring Framework to 5.3.27/6.0.8 due to CVE-2023-20861 and CVE-2023-20860
  • CDPD-48171: Spark - Upgrade snakeyaml due to CVE-2022-1471
  • CDPD-42094: Yarn - Upgrade JUnit to 4.13.2 due to medium CVEs