AWS Security ChangesHomeSearch

AWS emr high security documentation change

Service: emr · 2025-08-19 · Security-related high

File: emr/latest/ReleaseGuide/emr-whatsnew.md

Summary

Added consolidated documentation about the KMS encryption error affecting EMR 7.8/7.9

Security assessment

Repeats the security-relevant KMS encryption error details and workarounds, ensuring visibility across documentation. Directly impacts data-at-rest security controls.

Diff

diff --git a/emr/latest/ReleaseGuide/emr-whatsnew.md b/emr/latest/ReleaseGuide/emr-whatsnew.md
index 4f0760f45..427f355a5 100644
--- a//emr/latest/ReleaseGuide/emr-whatsnew.md
+++ b//emr/latest/ReleaseGuide/emr-whatsnew.md
@@ -42,0 +43,8 @@ The following release notes include information for Amazon EMR release 7.9.0.
+  * **KMS encryption using the EMR-EC2 SecretAgent component** – There is an error that occurs when KMS encryption at rest is enabled for Lake Formation-enabled clusters in EMR versions 7.8 and 7.9. Lake Formation-enabled jobs will fail with a _NoSuchMethodError_. There are two workarounds available:
+
+    * Temporarily disable KMS encryption at rest for affected clusters.
+
+    * Contact AWS Support to request a Bootstrap Action artifact if KMS encryption must be maintained.
+
+A permanent fix for this error is being worked on. This release note will be revised when it is deployed.
+