June 2016 - java-sig-commits - Fedora Mailing-Lists

[Bug 1308619] New: CVE-2015-8795 solr: multiple XSS vulnerabilities

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1308619 Bug ID: 1308619 Summary: CVE-2015-8795 solr: multiple XSS vulnerabilities Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: anemec(a)redhat.com CC: java-sig-commits(a)lists.fedoraproject.org, puntogil(a)libero.it CVE 2015-8795: Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in Apache Solr before 5.1 allow remote attackers to inject arbitrary web script or HTML via crafted fields that are mishandled during the rendering of the (1) Analysis page, related to webapp/web/js/scripts/analysis.js or (2) Schema-Browser page, related to webapp/web/js/scripts/schema-browser.js. https://issues.apache.org/jira/browse/SOLR-7346 CVE 2015-8796: Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted schema-browse URL. https://issues.apache.org/jira/browse/SOLR-7920 CVE 2015-8797: Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/plugins.js in the stats page in the Admin UI in Apache Solr before 5.3.1 allows remote attackers to inject arbitrary web script or HTML via the entry parameter to a plugins/cache URI. https://issues.apache.org/jira/browse/SOLR-7949 -- You are receiving this mail because: You are on the CC list for the bug.

7 years, 11 months

1
4
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 gil cattaneo <puntogil(a)libero.it> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On|1179355, 1255857, 1279201 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1179355 [Bug 1179355] Review Request: kite - Kite SDK is a high-level data layer for Hadoop https://bugzilla.redhat.com/show_bug.cgi?id=1255857 [Bug 1255857] Review Request: apache-htrace - Tracing framework for java based distributed systems https://bugzilla.redhat.com/show_bug.cgi?id=1279201 [Bug 1279201] Review Request: flume - A distributed log collection application for collecting data -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1255857, which changed state. Bug 1255857 Summary: Review Request: apache-htrace - Tracing framework for java based distributed systems https://bugzilla.redhat.com/show_bug.cgi?id=1255857 What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |CLOSED Resolution|--- |NOTABUG -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1179355, which changed state. Bug 1179355 Summary: Review Request: kite - Kite SDK is a high-level data layer for Hadoop https://bugzilla.redhat.com/show_bug.cgi?id=1179355 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |NOTABUG -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1279201, which changed state. Bug 1279201 Summary: Review Request: flume - A distributed log collection application for collecting data https://bugzilla.redhat.com/show_bug.cgi?id=1279201 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |NOTABUG -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 gil cattaneo <puntogil(a)libero.it> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On|1318873, 1325671, 1325688 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1318873 [Bug 1318873] Review Request: neurord - Stochastic reaction-diffusion simulator https://bugzilla.redhat.com/show_bug.cgi?id=1325671 [Bug 1325671] Review Request: jol - Java Object Layout https://bugzilla.redhat.com/show_bug.cgi?id=1325688 [Bug 1325688] Review Request: jackson-datatype-jsr310 - Add-on module to support JSR-310 (Java 8 Date & Time API) data types -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 gil cattaneo <puntogil(a)libero.it> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On|1325689, 1325690, 1327888, | |1327890, 1327892, 1328868 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1325689 [Bug 1325689] Review Request: jackson-datatype-jdk8 - Add-on module for Jackson to support JDK 8 data types https://bugzilla.redhat.com/show_bug.cgi?id=1325690 [Bug 1325690] Review Request: slice - Java library for efficiently working with heap and off-heap memory https://bugzilla.redhat.com/show_bug.cgi?id=1327888 [Bug 1327888] Review Request: airlift - Java Framework for building REST services https://bugzilla.redhat.com/show_bug.cgi?id=1327890 [Bug 1327890] Review Request: discovery - Discovery server https://bugzilla.redhat.com/show_bug.cgi?id=1327892 [Bug 1327892] Review Request: tpch - Port of TPC-H DBGEN to Java https://bugzilla.redhat.com/show_bug.cgi?id=1328868 [Bug 1328868] Review Request: presto - Distributed SQL query engine for big data -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Michael Simacek <msimacek(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On|1271193 | Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1271193 [Bug 1271193] Review Request: osgi-compendium - Interfaces and Classes for use in compiling OSGi bundles -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1327892, which changed state. Bug 1327892 Summary: Review Request: tpch - Port of TPC-H DBGEN to Java https://bugzilla.redhat.com/show_bug.cgi?id=1327892 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |NOTABUG -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

[Bug 652183] Java SIG tracker bug

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=652183 Bug 652183 depends on bug 1327890, which changed state. Bug 1327890 Summary: Review Request: discovery - Discovery server https://bugzilla.redhat.com/show_bug.cgi?id=1327890 What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |NOTABUG -- You are receiving this mail because: You are the QA Contact for the bug. You are the assignee for the bug.

7 years, 11 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits June 2016