Hadoop 3.4.1.400 (DEP 10.1.0) Release Notes
The notes below relate specifically to the HPE Data Fabric distribution of Apache Hadoop. You may also be interested in the Apache Hadoop changelog and the Apache Hadoop home page.
These release notes contain only HPE-specific information and are not necessarily cumulative in nature. For information about how to use the release notes, see Ecosystem Component Release Notes.
| Version | 3.4.1.400 |
| Release Date | April 2026 |
| Version Interoperability | See Ecosystem Pack Components and OS Support. |
| GitHub Source | https://github.com/mapr/hadoop-common/ |
| GitHub Release Tag | 3.4.1.400-dep-1010 |
| Maven Artifacts | https://repository.mapr.com/maven/ |
| Package Names | Navigate to https://package.ezmeral.hpe.com/releases/MEP/ and select your DEP and OS to view the list of package names. |
New in this Release
Hadoop 3.4.1.400 introduces the following enhancements or HPE platform-specific behavior
changes:
- CVE updates
- Bug fixes
Fixes
This HPE release includes the following fixes on the base Apache release:
| GitHub Commit Number | Date (YYYY-MM-DD) | HPE Fix Number and Description |
| 38b0a71a7d9 | 2026-03-02 | MAPRYARN-487: Updated org.apache.logging.log4j:log4j-layout-template-json to 2.25.3 |
| ec1bf896698 | 2026-02-24 | MAPRYARN-487: Updated netty4 to 4.1.131.Final |
| 90eb3eb565f | 2026-02-24 | MAPRYARN-487: Updated org.apache.avro:avro to 1.11.5 due CVE-2025-33042 |
| 12e3ada9b70 | 2026-02-24 | Backported HADOOP-19765. Upgrade to log4j 2.25.3 due to CVE-2025-68161 |
| 7ca3415c51c | 2026-02-24 | Backported HADOOP-19747. Switch to at.yawk.lz4:lz4-java:1.10.2 due to CVE-2025-66566 |
| 0becaa55464 | 2026-02-24 | Backported HADOOP-19761. Upgrade jetty and http2-common to 9.4.58.v20250814 |
| 5ee66584c62 | 2026-02-20 | ECO-428: Updated bootstrap for hadoop yarn application catalogs to ~3.4.0 to resolve CVE scanner warning |
| 5f091598167 | 2026-02-20 | ECO-427: Updated aliyun-sdk-oss to 3.18.5 to resolve transitive dependency CVE - CVE-2022-41404 |
| ddde7f6c572 | 2026-02-20 | Backported HADOOP-19352. Hadoop OSS Connector adds support for V4 signatures. |
| b20ee962d35 | 2026-01-23 | Backported MAPRYARN-486: Fixed YARN service startup process on the cluster without SSO |
| b01e30b766d | 2026-01-21 | MAPRHADOOP-590: Load all public keys during initialization JWT authentication handler |
Known Issues and Limitations
Hadoop 3.4.1.400 has the following known issue and limitation:
- Multiple labels are not supported within the same node or queue.
- YARN UI2. If you need to go to the login page after logging out, you need to go to the main page and refresh it.
Resolved Issues
None.