[
https://issues.apache.org/jira/browse/HADOOP-18145?focusedWorklogId=750045&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-750045
]
ASF GitHub Bot logged work on HADOOP-18145:
-------------------------------------------
Author: ASF GitHub Bot
Created on: 30/Mar/22 11:54
Start Date: 30/Mar/22 11:54
Worklog Time Spent: 10m
Work Description: steveloughran commented on pull request #4036:
URL: https://github.com/apache/hadoop/pull/4036#issuecomment-1083046153
+1.
merged to trunk and cherrypicked into branch-3.3.
thanks!
sorry for being so rigorous here but we have to worry about security in the
code which expands and then executes artifacts; unzip is a source of CVEs
across many applications
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
Issue Time Tracking
-------------------
Worklog Id: (was: 750045)
Time Spent: 10h (was: 9h 50m)
> Fileutil's unzip method causes unzipped files to lose their original
> permissions
> --------------------------------------------------------------------------------
>
> Key: HADOOP-18145
> URL: https://issues.apache.org/jira/browse/HADOOP-18145
> Project: Hadoop Common
> Issue Type: Bug
> Components: common
> Affects Versions: 2.7.2
> Reporter: jingxiong zhong
> Priority: Major
> Labels: pull-request-available
> Time Spent: 10h
> Remaining Estimate: 0h
>
> When Spark decompresses the zip file, if the original file has the executable
> permission, but the unzip method of FileUtil is invoked, the decompressed
> file loses the executable permission, we should save the original permission
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
