Entries tagged [security]

The Apache Software Foundation Announces Apache® R...

Big Data security management framework for the Apache Hadoop ecosystem in use at ING, Protegrity, and Sprint, among other organizations. Forest Hill, MD —8 February 2017— The Apache Software Foundation (ASF), the all-volunteer developers, stewards, and incubators of more than 350 Open Source projects and initiatives, announced today that... [Read more...]

Feedback from The Apache Software Foundation on th...

by Dirk-Willem van Gulik <dirkx(at)apache(punto)org> December 2016, v1.09 Background The important role of open source software in key infrastructures was brought to collective attention by two major security vulnerabilities in the core of the internet infrastructure. Heartbleed and Shellshock of 2014 caused significant... [Read more...]

Apache CloudStack registerUserKeys authorization v...

The CloudStack security team recently received notice of a significant vulnerability in a CloudStack API call - registerUserKeys. The original intention for this call was for it to only be exposed for integration work - eg not to the public network in general. A weakness in the API call's implementation allows a malicious user to reset the API keys for... [Read more...]

Search blogs.apache.org

Today's active blogs

Popular blog tags

Related sites

Navigation