Help Center/ MapReduce Service/ Product Bulletin/ Vulnerability Notice/ MRS Fastjson Vulnerability Remediation Guide/ Remediating Flink

Updated on 2024-08-28 GMT+08:00

View PDF

Remediating Flink

Prerequisites

You have obtained the URL and admin account for logging in to FusionInsight Manager.

Procedure

Log in to FusionInsight Manager and choose Cluster > Services > Flink. Click Configurations then All Configurations. On this sub-tab page, search for the FLINK_SERVER_GC_OPTS parameter, and add -Dfastjson.parser.safeMode=true to the Value column of FLINK_SERVER_GC_OPTS. (Leave a space between the existing value and -Dfastjson.parser.safeMode=true.)

For example, if the existing value is xxx, the new value is xxx -Dfastjson.parser.safeMode=true.
Click Save. On the Instance tab page, select all FlinkServer instances and choose More > Restart Instance.

Log in to any FlinkServer node as user omm and check the process:

ps -ef | grep FlinkServer

If the -Dfastjson.parser.safeMode=true parameter exists, the vulnerability has been mitigated.

Parent topic: MRS Fastjson Vulnerability Remediation Guide

Previous topic: Remediating Kafka

Next topic: Version Support Bulletin

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.