flink-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Chesnay Schepler (Jira)" <j...@apache.org>
Subject [jira] [Closed] (FLINK-22691) On Aliyun ECS, docker deployed flink (1.13.0), which was scanned to Mirai DDOS Trojan
Date Thu, 20 May 2021 11:47:00 GMT

     [ https://issues.apache.org/jira/browse/FLINK-22691?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Chesnay Schepler closed FLINK-22691.
------------------------------------
    Resolution: Invalid

Our docker images, as published on https://hub.docker.com/_/flink, do not contain said directory/file,
and as such this is not a problem on the Flink side.

Some other actor outside of our control must've added the file in question; maybe you're accessing
tainted images, maybe your system is already infected.

> On Aliyun ECS, docker deployed flink (1.13.0), which was scanned to Mirai DDOS Trojan
> -------------------------------------------------------------------------------------
>
>                 Key: FLINK-22691
>                 URL: https://issues.apache.org/jira/browse/FLINK-22691
>             Project: Flink
>          Issue Type: Bug
>          Components: API / Core
>    Affects Versions: 1.13.0
>            Reporter: Magina.Shan
>            Priority: Major
>         Attachments: image-2021-05-18-11-45-19-572.png, image-2021-05-18-11-46-26-463.png
>
>
> On Aliyun ECS, docker deployed flink (1.13.0), which was scanned to Mirai DDOS Trojan.
The path is: /opt/flink/Winbox. The Aliyun ticket says it is a flink vulnerability.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message