Fixed Issues in Cloudera Runtime 7.2.17.900

You can review the list of reported issues and their fixes in Cloudera Runtime 7.2.17.900.

CDPD-75369: commons-configurtions2 and common-text upgrade causing issue in zeppelin

Backported a change to fix dependency issue in Zeppelin.

CDPD-74730: Backport SPARK-46239: Hide the Jetty server's version

[SPARK-46239] Hide the Jetty server's version

[SPARK-46239] Hide the Jetty server's version.

Apache Jira: SPARK-46239

CDPD-73427: Upgrade Spring Framework to resolve vulnerabilities

CVE-2024-38808: Vulnerable to resource exhaustion through user-supplied SpEL expressions.

CVE-2024-38809: DoS attack possible due to improper ETag validation in HTTP requests.

Upgraded Spring Framework to versions 6.1.12, 6.0.23, or 5.3.39 to mitigate these issues.

CDPD-8041: Add HTTP Cache-Control Header

Added two Zeppelin configuration properties to control the HTTP response headers, allowing for improved cache management and server response behavior. See Configuring Zeppelin caching.

CDPD-74705: Disable KUDU-3367 behavior by default

This fix addresses an issue with major delta compaction caused by functionality introduced in KUDU-3367. The fix disables the functionality by adjusting the default value of the -all_delete_op_delta_file_cnt_for_compaction flag. While the original functionality was intended to optimize Kudu deployments of early versions, the functionality introduced by KUDU-3367 isn't relevant for data generated by Kudu servers in CDP 7.1.1 and newer versions.

Apache Jira:KUDU-3619 .

CDPD-76006: Spark Iceberg vectorized Parquet read of decimal column is incorrect

When using Spark vectorized read of Iceberg tables with Parquet files (enabled by default), decimal columns may be read incorrectly. This issue occurs when reading a Parquet decimal column chunk with multiple pages where some of the pages are dictionary encoded.

This issue is now fixed.