GHSA-43xg-8wmj-cw8h

• BIT-spark-2022-31777
• CVE-2022-31777
• PYSEC-2022-42976

• 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

{
    "nvd_published_at": "2022-11-01T16:15:00Z",
    "github_reviewed_at": "2022-11-01T21:03:46Z",
    "severity": "MODERATE",
    "cwe_ids": [
        "CWE-74"
    ],
    "github_reviewed": true
}

• https://nvd.nist.gov/vuln/detail/CVE-2022-31777
• https://github.com/apache/spark/commit/ad90195de56688ce0898691eb9d04297ab0871ad
• https://github.com/apache/spark
• https://github.com/pypa/advisory-database/tree/main/vulns/pyspark/PYSEC-2022-42976.yaml
• https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q
• https://web.archive.org/web/20220728105026/https://issues.apache.org/jira/browse/SPARK-39505
• http://www.openwall.com/lists/oss-security/2022/11/01/14