Fixed Issues in Cloudera Runtime 7.2.18.500

You can review the list of reported issues and their fixes in Cloudera Runtime 7.2.18.500.

CDPD-75622: Backport upstream fixes for handling nested beans and generic type beans while creating spark encoders.

Backporting upstream fixes from Spark 3.4 to fix the following issues:

starting from Spark 3.4.x, Encoders.bean throws an exception when the passed class contains a field whose type is a nested bean with type arguments
since Spark 3.4.x, an exception is thrown when Encoders.bean is called providing a bean having read-only properties
unsupported feature of bean encoder when the superclass of the bean has generic type arguments

Apache Jira: APACHE-44634, APACHE-45081, APACHE-44910

CDPD-74849: CLONE [7.2.18 CHFx] - Creating security zone with any role selected fails in oracle DB based runs

Apache Jira: RANGER-4949

CDPD-74705: Disable KUDU-3367 behavior by default

This fix addresses an issue with major delta compaction caused by functionality introduced in KUDU-3367. The fix disables the functionality by adjusting the default value of the -all_delete_op_delta_file_cnt_for_compaction flag. While the original functionality was intended to optimize Kudu deployments of early versions, the functionality introduced by KUDU-3367 isn't relevant for data generated by Kudu servers in CDP 7.1.1 and newer versions.

Apache Jira: KUDU-3619

CDPD-74681: Backport bucket-cache related fixes required for ZDU into CDH-7.2.18.x

CDPD-74478: [7.2.18 500] [UI] 'Exclude SubTypes' and 'Exclude Sub-classifications' filter should be removed from referred attributes tab of entity details page

Special character validation was added to glossary, term and category names in Apache Atlas. The special characters '@', '.', '<', '>' are no longer allowed in glossary, term and category name fields.

The Exclude SubTypes and Exclude Sub-classifications filters were removed from the Table tab of entity details.

Apache Jira: ATLAS-4894

CDPD-74428: CLONE - Backport fix to address CVE-2023-50291

This ticket backports the fix for CVE-2023-50291 from upstream Solr repository.

Apache Jira: SOLR-16809

CDPD-74114: Proxyuser groups are not included in POST and PATCH requests

Fix an issue where group headers were not added to POST and PUT requests.

Apache Jira: KNOX-3062

CDPD-73882: Alter Rename should not check for the CREATE permission on the database in which renamed table is created

Alter rename command does not require CREATE permission on the database in which renamed table is created for Hive.

Apache Jira: RANGER-4926

CDPD-73760: Deleting topic may lead to directory offline

The log directory is no longer marked as offline after deleting a topic.

Apache Jira: KAFKA-15391

CDPD-73733: Schema version selection does not work in Data Explorer

Fixed a bug where users were not able to switch between the different Avro schema versions from the dropdown list on Data Explorer

CDPD-73669: Secondary pool connection starvation caused by updatePartitionColumnStatisticsInBatch API

Hive queries intermittently failed with

Connection is not
            available, request timed out

errors. The issue occurred because the updatePartitionColumnStatisticsInBatch method in ObjectStore used connections from the secondary pool, which had a pool size of only two, leading to connection starvation.

The fix ensures that the updatePartitionColumnStatisticsInBatch API now requests connections from the primary connection pool, preventing connection starvation in the secondary pool.

Apache Jira: HIVE-28456

CDPD-73663: RMS server throws ConcurrentModificationException

The original ConcurrentModificationException is likely thrown when the resource-mappings are modified in response to changes in the Hive metadata while they are being serialized for downloading to the NameNode (or secondary-namenode). The fix is to create a shallow copy of resource-mappings before applying deltas which ensures that resource-mappings are not modified while they are being serialized for downloading to the NameNode.

CDPD-73207: IMPALA-13296 Hive to Iceberg table-migration: pre-check column compatibility

CDPD-69766: Backport fix to address CVE-2023-50386

This ticket backports the fix for CVE-2023-50386 from upstream Solr repository.

Apache Jira: SOLR-16949

CDPD-69765: Backport fix to address CVE-2023-50292

This ticket backports the fix for CVE-2023-50292 from upstream Solr repository.

Apache Jira: SOLR-16777

CDPD-67055: Backport fix to address CVE-2023-50298

This ticket backports the fix for CVE-2023-50298 from upstream Solr repository.

Apache Jira: SOLR-17098

CDPD-66839: Enhance perf-tracer to get CPU time when possible

With Ranger module is instrumented with performance measurement code, enabling performance logging for the module helps in measuring amount ot time spent during execution of various methods/functions during its operation. For achieving more precise time measurement, this feature supports nanosecond precision when the JVM version supports it.

Apache Jira: RANGER-4515

CDPD-8041: Add HTTP Cache-Control Header

Added two Zeppelin configuration properties to control the HTTP response headers, allowing for improved cache management and server response behavior. See Configuring Zeppelin caching.

Apache Jira: ZEPPELIN-4585

Fixed Common Vulnerabilities and Exposures

Common Vulnerabilities and Exposures (CVE) that are fixed in Runtime 7.2.18.500:


CVEs	Package Name
CVE-2019-17571	Log4j
CVE-2021-4104	Log4j