News

Hosted on MSN2mon
Apache Parquet users warned of maximum risk security flaw, told to patch now - MSN
Apache Parquet, a columnar storage file format, ... Those that are unable to upgrade their Apache Parquet instances to version 1.15.1 straight away are advised to avoid untrusted Parquet files, ...
CSOonline2mon
Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE - CSO Online
A flaw in code for handling Parquet, Apache’s open-source columnar data file format, allows attackers to run arbitrary code on vulnerable instances. The vulnerability, tracked as CVE-2025-30065 ...
Bleeping Computer2mon
Max severity RCE flaw discovered in widely used Apache Parquet - BleepingComputer
That being said, if upgrading to Apache Parquet 1.15.1 immediately is impossible, it is suggested to avoid untrusted Parquet files or carefully validate their safety before processing them.
ZDNet9y
Apache Atlas, Parquet progress; Whirr retired | ZDNET
Apache Atlas, Parquet progress; ... The new 1.80 release of Parquet MR (a set of Java Libraries for working with Parquet files) is really just a maintenance release addressing two bugs.
TechRadar2mon
Apache Parquet users warned of maximum risk security flaw, told to patch now - TechRadar
Researchers claim Apache Parquet was carrying a maximum-severity flaw It allows threat actors to run arbitrary code A patch was released, and users are urged to apply it Apache Parquet, a columnar ...