Security
Security
Multiple vulnerabilities have been discovered in Zeppelin, the worst of which could lead to remote code execution.
| Package | www-apps/zeppelin-bin on all architectures |
|---|---|
| Affected versions | < 0.10.1 |
| Unaffected versions | >= 0.10.1 |
Apache Zeppelin is a web-based notebook that enables data-driven, interactive data analytics and collaborative documents with SQL, Scala, Python, R and more.
Multiple vulnerabilities have been discovered in Zeppelin. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All Zeppelin users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/zeppelin-bin-0.10.1"
Release date
November 24, 2023
Latest revision
November 24, 2023: 1
Severity
high
Exploitable
remote
Bugzilla entries