Debian LTS Advisory ([SECURITY] [DLA 986-1] zookeeper security update)

It was discovered that Zookeeper, a service for maintaining configuration information, didn't restrict access to the computationally expensive wchp/wchc commands which could result in denial of service by elevated CPU consumption. This update disables those two commands by default. The new configuration option '4lw.commands.whitelist' can be used to whitelist commands selectively (and the full set of commands can be restored with '*')

zookeeper on Debian Linux

This check tests the installed software version using the apt package manager.

For Debian 7 'Wheezy', these problems have been fixed in version 3.4.5+dfsg-2+deb7u1. We recommend that you upgrade your zookeeper packages.