CVE-2022-4641

Name of the Vulnerable Software and Affected Versions pig-vector (affected versions not specified)

Description A vulnerability was found in pig-vector, classified as problematic, affecting the LogisticRegression function of the file src/main/java/org/apache/mahout/pig/LogisticRegression.java. This issue leads to an insecure temporary file and requires a local attack approach.

Recommendations To fix this issue, it is recommended to apply a patch. The name of the patch is 1e7bd9fab5401a2df18d2eabd802adcf0dcf1f15. As a temporary workaround, consider disabling the LogisticRegression function until a patch is available.