Cumulative hotfix CDP Private Cloud Base 7.1.7.3014-1 (SP3 Cumulative hotfix5)
Know more about the cumulative hotfix 5 for CDP 7.1.7 SP3. This cumulative hotfix was released on Oct 07, 2024.
Following are the list of fixes that were shipped for CDP Private Cloud Base version 7.1.7-1.cdh7.1.7.p3014.58040522.
- CDPD-74419: Backport HIVE-22978 to CDH-7.1.7.3000
Calcite rules can do rewritings of aggregate functions, e.g.,
avg into sum/count. When type of avg is decimal, inference of intermediate precision and scale for the division is not done correctly. The reason is that we miss support for some types in method getDefaultPrecision in HiveTypeSystemImpl. Additionally, deriveSumType should be overridden in HiveTypeSystemImpl to abide by the Hive semantics for sum aggregate type inference.- CDPD-73679, CDPD-73428: SMM - Upgrade Spring Framework to 6.1.12/6.0.23/5.3.39 due to CVE-2024-38808 and CVE-2024-38809
- Upgraded the Spring Framework version to 6.1.12 due to CVE-2024-38808 and CVE-2024-38809.
- CDPD-69767: Backport fix to address CVE-2023-50291
- This ticket backports the fix for CVE-2023-50291 from upstream Solr repository.
- CDPD-69766: Backport fix to address CVE-2023-50386
- This ticket backports the fix for CVE-2023-50386 from upstream Solr repository.
- CDPD-69765: Backport fix to address CVE-2023-50292
- This ticket backports the fix for CVE-2023-50292 from upstream Solr repository.
- CDPD-67055: Backport fix to address CVE-2023-50298
- This ticket backports the fix for CVE-2023-50298 from upstream Solr repository.
The Common Vulnerabilities and Exposures (CVEs) that are fixed in this CHF:
- CVE-2024-38808 - Spring Framework
- CVE-2024-38809 - Spring Framework
| Repository Location |
|---|
|
