Search for packages
Package details: pkg:maven/org.apache.spark/spark-core_2.11@2.2.3
purl pkg:maven/org.apache.spark/spark-core_2.11@2.2.3
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-6e2g-d1n5-aaam
Aliases:
CVE-2019-10099
GHSA-fp5j-3fpf-mhj5
PYSEC-2019-114
PYSEC-2019-44
Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk unencrypted, even if spark.io.encryption.enabled=true. This includes cached blocks that are fetched to disk (controlled by spark.maxRemoteBlockSizeFetchToMem); in SparkR, using parallelize; in Pyspark, using broadcast and parallelize; and use of python udfs.
2.3.3
Affected by 1 other vulnerability.
VCID-d7qj-byug-aaan
Aliases:
CVE-2018-17190
GHSA-phg2-9c5g-m4q7
Low severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11 There are no reported fixed by versions.
VCID-nhcd-qhgh-aaah
Aliases:
CVE-2018-11770
GHSA-w4r4-65mg-45x2
Moderate severity vulnerability that affects org.apache.spark:spark-core_2.10 and org.apache.spark:spark-core_2.11
2.3.3
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T14:29:30.322595+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.3
2025-06-20T14:29:29.404383+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.3
2025-06-20T14:20:43.779019+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.3
2025-06-20T14:20:41.163192+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.3
2025-06-20T14:18:21.575678+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.3
2025-06-20T14:18:21.041994+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.3
2025-06-03T21:13:23.188657+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.0
2025-06-03T21:13:22.232820+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.0
2025-06-03T21:04:48.641486+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.0
2025-06-03T21:04:45.418352+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.0
2025-06-03T21:04:32.611544+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.0
2025-06-03T21:04:32.177036+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.0
2025-06-02T20:54:07.283908+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.1.2
2025-06-02T20:54:06.107756+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.1.2
2025-06-02T20:44:39.760725+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.1.2
2025-06-02T20:44:36.046061+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.1.2
2025-06-02T20:44:21.808577+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.1.2
2025-06-02T20:44:21.205550+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.1.2
2025-04-03T17:21:34.707951+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 36.0.0
2025-04-03T17:21:32.397282+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 36.0.0
2025-04-03T17:06:25.688596+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 36.0.0
2025-04-03T17:06:19.242273+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 36.0.0
2025-04-03T17:05:59.526545+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 36.0.0
2025-04-03T17:05:58.479489+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 36.0.0
2025-02-18T07:40:27.178112+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 35.1.0
2025-02-18T07:40:26.972723+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 35.1.0
2025-02-18T07:04:49.558211+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 35.1.0
2025-02-18T07:04:49.308082+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 35.1.0
2025-02-18T06:17:18.107190+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 35.1.0
2025-02-18T01:39:28.750530+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 35.1.0
2024-11-21T03:10:54.314920+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 35.0.0
2024-11-21T02:51:39.127426+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 35.0.0
2024-11-20T23:55:06.729246+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 35.0.0
2024-11-19T02:53:51.746855+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.3.2
2024-11-19T02:41:38.287573+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.3.2
2024-11-18T23:43:35.455397+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.3.2
2024-10-08T03:29:45.325715+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.2
2024-10-08T03:09:58.449626+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.2
2024-10-08T02:44:53.349818+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.2
2024-10-07T17:55:25.371368+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.2
2024-10-07T17:42:04.303644+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.2
2024-10-07T17:39:39.969024+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.2
2024-09-23T03:24:36.813074+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.1
2024-09-23T03:06:03.633837+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.1
2024-09-23T02:42:37.823630+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.1
2024-09-22T18:32:18.769938+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.1
2024-09-22T18:13:57.193854+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.1
2024-09-22T18:11:22.941351+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.1
2024-04-24T06:05:21.760920+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc4
2024-04-24T06:05:21.520953+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc4
2024-04-24T05:43:30.565027+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc4
2024-04-24T05:43:30.288483+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc4
2024-04-24T05:13:31.148218+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc4
2024-04-24T05:13:30.901590+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc4
2024-04-23T19:21:13.658646+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc4
2024-04-23T19:21:13.418961+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.0rc4
2024-04-23T19:08:15.967041+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc4
2024-04-23T19:08:15.686810+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.0rc4
2024-04-23T18:59:31.902203+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.0rc4
2024-04-23T18:59:31.206220+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc4
2024-01-10T08:36:32.089429+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc2
2024-01-10T08:36:31.848873+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc2
2024-01-10T08:15:11.496266+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc2
2024-01-10T08:15:11.220576+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc2
2024-01-10T07:45:08.560344+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc2
2024-01-10T07:45:08.326214+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc2
2024-01-09T21:12:40.555669+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc2
2024-01-09T21:12:40.290964+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam https://github.com/advisories/GHSA-fp5j-3fpf-mhj5 34.0.0rc2
2024-01-09T20:57:32.992642+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc2
2024-01-09T20:57:32.699553+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan https://github.com/advisories/GHSA-phg2-9c5g-m4q7 34.0.0rc2
2024-01-09T20:51:53.612792+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah https://github.com/advisories/GHSA-w4r4-65mg-45x2 34.0.0rc2
2024-01-09T20:51:52.916427+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc2
2024-01-04T01:21:45.056496+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc1
2024-01-04T01:21:44.812333+00:00 GitLab Importer Affected by VCID-nhcd-qhgh-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-11770.yml 34.0.0rc1
2024-01-04T01:00:31.109448+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2018-17190.yml 34.0.0rc1
2024-01-04T01:00:30.829674+00:00 GitLab Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc1
2024-01-04T00:30:23.848704+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.spark/spark-core_2.11/CVE-2019-10099.yml 34.0.0rc1
2024-01-04T00:30:23.619240+00:00 GitLab Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc1
2024-01-03T16:14:41.505763+00:00 GHSA Importer Affected by VCID-6e2g-d1n5-aaam None 34.0.0rc1
2024-01-03T16:06:16.924797+00:00 GHSA Importer Affected by VCID-d7qj-byug-aaan None 34.0.0rc1
2024-01-03T16:02:35.406293+00:00 GHSA Importer Affected by VCID-nhcd-qhgh-aaah None 34.0.0rc1