Cumulative hotfix CDP PvC Base 7.1.7.2024-1 (SP2 cumulative hotfix9)

Know more about the cumulative hotfixes 9 for 7.1.7 SP2. This cumulative hotfix is released on June 8, 2023.

Following are the list of fixes that were shipped for CDP private cloud-base version 7.1.7-1.cdh7.1.7.p2024.41705565

  • CDPD-56737: Ranger - Upgrade Tomcat to 8.5.89 due to CVE-2023-28709
  • CDPD-56586: [AUTOSYNC] Bump sqlite-jdbc to 3.41.2.2
  • CDPD-56389: Backport HIVE-27285 to CDH-7.1.7.2000
  • CDPD-56334: Backport HADOOP-17270. Fix testCompressorDecompressorWithExeedBufferLimit to cover the intended scenario
  • CDPD-56271: Backport KAFKA-7421 - Deadlock in Kafka Connect during class loading
  • CDPD-56262: Backport CDPD-55116 to 7.1.7 SP2 CHF9
  • CDPD-56134: Reload4j migration error in ZooKeeper
  • CDPD-55977: [7.1.7 SP2 CHFx CLONE] - Wrong permission check for Hive "Alter View as" command in Ranger HiveAuthorizer
  • CDPD-55614: Cruise Control - Upgrade Nimbus-JOSE-JWT to 9.24 due to CVEs coming from json-smart
  • CDPD-55416: Knox - Upgrade json-smart to 2.4.10 due to CVE-2023-1370
  • CDPD-53821: CDPD - Upgrade jettison to 1.5.4 due to CVE-2023-1436
  • CDPD-53809: Knox - Upgrade Spring Framework to 5.3.27/6.0.8 due to CVE-2023-20861, CVE-2023-20860 and CVE-2023-20863
  • CDPD-51887: CLONE [7.1.7.2000] - Ranger is opening a lot of zk connections when solr is down
  • CDPD-50450: Backport HIVE-27201: Inconsistency between session Hive and thread-local Hive may cause HS2 deadlock
  • CDPD-48018: Impala - Upgrade postgresql to 42.5.1 due to CVE-2022-41946