February 2014 - java-sig-commits - Fedora Mailing-Lists

[Bug 1062337] CVE-2014-0050 apache-commons-fileupload: denial of service due to too-small buffer size used bt MultipartStream

by Red Hat Bugzilla

10 years, 3 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 gil cattaneo <puntogil(a)libero.it> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On|1011960 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1011960 [Bug 1011960] Review Request: datanucleus-rdbms - plugin for RDBMS storage -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

10 years, 3 months

1
0
0 / 0

[Bug 922146] CVE-2013-0248 jakarta-commons-fileupload, apache-commons-fileupload: /tmp directory used by default for uploaded files (possibility to overwrite arbitrary files)

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=922146 Bug 922146 depends on bug 922147, which changed state. Bug 922147 Summary: CVE-2013-0248 jakarta-commons-fileupload, apache-commons-fileupload: /tmp directory used by default for uploaded files (possibility to overwrite arbitrary files) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=922147 What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |NEW Resolution|WONTFIX |--- -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=3MQsdtfOzV&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1011960, which changed state. Bug 1011960 Summary: Review Request: datanucleus-rdbms - plugin for RDBMS storage https://bugzilla.redhat.com/show_bug.cgi?id=1011960 What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

10 years, 3 months

1
0
0 / 0

[Bug 922146] CVE-2013-0248 jakarta-commons-fileupload, apache-commons-fileupload: /tmp directory used by default for uploaded files (possibility to overwrite arbitrary files)

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=922146 Bug 922146 depends on bug 922147, which changed state. Bug 922147 Summary: CVE-2013-0248 jakarta-commons-fileupload, apache-commons-fileupload: /tmp directory used by default for uploaded files (possibility to overwrite arbitrary files) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=922147 What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=JfS7fiSAJN&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 961783] CVE-2012-3544 tomcat: Limited DoS in chunked transfer encoding input filter

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=961783 Bug 961783 depends on bug 961807, which changed state. Bug 961807 Summary: CVE-2013-2067 CVE-2012-3544 tomcat6 various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=961807 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=t45VCdVtvs&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 961779] CVE-2013-2067 tomcat: Session fixation in form authenticator

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=961779 Bug 961779 depends on bug 961807, which changed state. Bug 961807 Summary: CVE-2013-2067 CVE-2012-3544 tomcat6 various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=961807 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=mHqpSJsdEf&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 924447] CVE-2013-1880 ActiveMQ: XSS vulnerability in portfolioPublish demo application

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=924447 Bug 924447 depends on bug 924448, which changed state. Bug 924448 Summary: CVE-2013-1879 CVE-2013-1880 activemq various flaws [fedora-18] https://bugzilla.redhat.com/show_bug.cgi?id=924448 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=T8eihFSjez&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 924446] CVE-2013-1879 ActiveMQ: XSS vulnerability in scheduled.jsp

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=924446 Bug 924446 depends on bug 924448, which changed state. Bug 924448 Summary: CVE-2013-1879 CVE-2013-1880 activemq various flaws [fedora-18] https://bugzilla.redhat.com/show_bug.cgi?id=924448 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=pTGkxv7xXN&a=cc_unsubscribe

10 years, 3 months

1
0
0 / 0

[Bug 924448] New: CVE-2013-1879 ActiveMQ: XSS vulnerability in scheduled.jsp [fedora-18]

by Red Hat Bugzilla

Product: Fedora https://bugzilla.redhat.com/show_bug.cgi?id=924448 Bug ID: 924448 Summary: CVE-2013-1879 ActiveMQ: XSS vulnerability in scheduled.jsp [fedora-18] Product: Fedora Version: 18 Component: activemq Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: mspaulding06(a)gmail.com Reporter: kseifried(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: agrimm(a)gmail.com, java-sig-commits(a)lists.fedoraproject.org, mspaulding06(a)gmail.com Blocks: 924446 (CVE-2013-1879) This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When creating a Bodhi update request, please use the bodhi submission link noted in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the Bodhi notes field when available. fedora-18 tracking bug for activemq: see blocks bug list for full details of the security issue(s). [bug automatically created by: add-tracking-bugs] -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=7uln0KGpXW&a=cc_unsubscribe

10 years, 3 months

1
7
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits February 2014