AWS Security ChangesHomeSearch

AWS emr medium security documentation change

Service: emr · 2025-10-22 · Security-related medium

File: emr/latest/ReleaseGuide/emr-760-release.md

Summary

Added known issues: HBase table creation failure with Glue catalog and Tez UI HTTPS misconfiguration when in-transit encryption is enabled

Security assessment

Tez UI bug introduces insecure HTTP usage in encrypted contexts, documented with mitigation steps to enforce HTTPS for secure communication.

Diff

diff --git a/emr/latest/ReleaseGuide/emr-760-release.md b/emr/latest/ReleaseGuide/emr-760-release.md
index 4c31fd8cf..355c693a2 100644
--- a//emr/latest/ReleaseGuide/emr-760-release.md
+++ b//emr/latest/ReleaseGuide/emr-760-release.md
@@ -90,0 +91,4 @@ The following release notes include information for Amazon EMR release 7.6.0.
+  * **HBase table creation in Hive with Glue catalog** – From EMR-7.3.0 to EMR-7.10.0, there is a bug due to Hive Iceberg integration, which causes HBase table creation in Hive to fail when Glue Data Catalog is used as the metastore. Please reach out to the AWS support team if you encounter this issue.
+
+  * **Tez UI** – From EMR-7.3 to EMR-7.10, there is a bug where accessing Tez UI through YARN Resource Manager Web UI fails when in-transit encryption is enabled. This occurs because YARN proxy attempts to use HTTP protocol while Tez UI requires HTTPS. Please modify the `tez.tez-ui.history-url.base` configuration in `tez-site` from `http` to `https` to resolve this issue.
+