CVE-2021-39234: Apache Ozone: Raw block data can be read bypassing ACL/authorization

[Siddharth Wagle <swagle () apache org>]

Description:

Authenticated users knowing the ID of an existing block can craft specific request allowing access those blocks, 
bypassing other security checks like ACL. 

This issue is being tracked as HDDS-5061

Mitigation:

Upgrade to Apache Ozone release version 1.2.0

Credit:

Apache Ozone would like to thank Marton Elek for reporting this issue.