Fixed in 1.7.1:
CVE-2015-3254: Apache Sentry vulnerabilities due to use of vulnerable version of Apache Thrift
Fixed in 1.7.0:
CVE-2016-0760 : Hive builtin functions “reflect”, “reflect2”, and “java_method” are not blocked in Apache Sentry
Powered by a free Atlassian Confluence Open Source Project License granted to Apache Software Foundation. Evaluate Confluence today.