Cloudera Docs

Fixed Issues in Apache Parquet

Review the list of Parquet issues that are resolved in Cloudera Runtime 7.3.1, its service packs and cumulative hotfixes.

Cloudera Runtime 7.3.1.400 SP2

There are no fixed issues in this release.

Fixed issues in Cloudera Runtime 7.3.1.300 SP1 CHF1

There are no new fixed issues in this release.

Fixed issues in Cloudera Runtime 7.3.1.200 SP1

CDPD-81756: Restrict trusted packages in the parquet-avro module
7.3.1.200
Due to CVE-2025-30065, schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and earlier versions allows bad actors to execute arbitrary code.

To prevent this CVE, users must specify all the trusted packages in the org.apache.parquet.avro.SERIALIZABLE_PACKAGES environment variable. If the user does not want to specify the override property, then the following packages that are trusted by default are allowed — java.lang, java.math, java.io, java.net, org.apache.parquet.avro.

Fixed issues in Cloudera Runtime 7.3.1.100 CHF1

There are no fixed issues in this release.

Fixed issues in Cloudera Runtime 7.3.1

There are no fixed issues in this release.