December 2020 - java-sig-commits - Fedora Mailing-Lists

[Bug 1738673] CVE-2019-10219 hibernate-validator: safeHTML validator allows XSS

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1738673 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:5568 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1738673] CVE-2019-10219 hibernate-validator: safeHTML validator allows XSS

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1738673 --- Comment #40 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Fuse 7.8.0 Via RHSA-2020:5568 https://access.redhat.com/errata/RHSA-2020:5568 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1665601] CVE-2018-1000873 jackson-modules-java8: DoS due to an Improper Input Validation

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1665601 --- Comment #14 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Fuse 7.8.0 Via RHSA-2020:5568 https://access.redhat.com/errata/RHSA-2020:5568 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1666499] CVE-2019-14900 hibernate: SQL injection issue in Hibernate ORM

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1666499 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:5568 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1666499] CVE-2019-14900 hibernate: SQL injection issue in Hibernate ORM

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1666499 --- Comment #42 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Fuse 7.8.0 Via RHSA-2020:5568 https://access.redhat.com/errata/RHSA-2020:5568 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1887664] CVE-2020-25649 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1887664 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:5361 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1887664] CVE-2020-25649 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1887664 --- Comment #58 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Openshift Application Runtimes Via RHSA-2020:5361 https://access.redhat.com/errata/RHSA-2020:5361 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1887664] CVE-2020-25649 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1887664 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:5533 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1887664] CVE-2020-25649 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1887664 --- Comment #57 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Single Sign-On Via RHSA-2020:5533 https://access.redhat.com/errata/RHSA-2020:5533 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

[Bug 1887664] CVE-2020-25649 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1887664 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:5410 -- You are receiving this mail because: You are on the CC list for the bug.

3 years, 5 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits December 2020