CVE-2025-30065 Information

Description

Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code

Users are recommended to upgrade to version 1.15.1 which fixes the issue.

Reference

http://www.openwall.com/lists/oss-security/2025/04/01/1 https://lists.apache.org/thread/okzqb3kn479gqzxm21gg5vqr35om9gw5