diff --git a/hadoop-common-project/hadoop-common/CHANGES.txt b/hadoop-common-project/hadoop-common/CHANGES.txt
index 58f49a0c56c..40b47cb3d71 100644
--- a/hadoop-common-project/hadoop-common/CHANGES.txt
+++ b/hadoop-common-project/hadoop-common/CHANGES.txt
@@ -20,10 +20,6 @@ Release 2.9.0 - UNRELEASED
 
   BUG FIXES
 
-    HADOOP-12687. SecureUtil#QualifiedHostResolver#getByName should also try to
-    resolve direct hostname, incase multiple loopback addresses are present in
-    /etc/hosts (Sunil G via rohithsharmaks)
-
     HADOOP-12655. TestHttpServer.testBindAddress bind port range is wider
     than expected. (Wei-Chiu Chuang via stevel)
 
diff --git a/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/SecurityUtil.java b/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/SecurityUtil.java
index 714c923a627..38096ab4715 100644
--- a/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/SecurityUtil.java
+++ b/hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/security/SecurityUtil.java
@@ -580,13 +580,7 @@ public class SecurityUtil {
           addr = getByNameWithSearch(host);
           if (addr == null) {
             addr = getByExactName(host);
-            // If multiple loopback addresses are present, a direct lookup
-            // will be helpful
-            if (addr == null) {
-              addr = InetAddress.getByName(host);
-            }
           }
-
         }
       }
       // unresolvable!