[Bug 1632469] CVE-2018-11762 tika: Zip Slip vulnerability in tika-app
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1632469
Chess Hazlett <chazlett(a)redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Whiteboard|impact=moderate,public=2018 |impact=moderate,public=2018
|0919,reported=20180919,sour |0919,reported=20180919,sour
|ce=cve,cvss3=7.5/CVSS:3.0/A |ce=cve,cvss3=7.5/CVSS:3.0/A
|V:N/AC:L/PR:N/UI:N/S:U/C:N/ |V:N/AC:L/PR:N/UI:N/S:U/C:N/
|I:N/A:H,cwe=CWE-20,fedora-a |I:N/A:H,cwe=CWE-20,fedora-a
|ll/tika=affected,rhscl-3/rh |ll/tika=affected,rhscl-3/rh
|-eclipse46-tika=notaffected |-eclipse46-tika=notaffected
|,fis-2/tika-core=new,fuse-7 |,fis-2/tika-core=new,fuse-7
|/camel-tika=new,fsw-6/tika- |/camel-tika=new,fsw-6/tika-
|core=new,brms-5/tika-core=n |core=wontfix,brms-5/tika-co
|otaffected,brms-6/tika-core |re=notaffected,brms-6/tika-
|=new,bpms-6/tika-core=new,j |core=wontfix,bpms-6/tika-co
|dv-6/tika-core=new,rhn_sate |re=wontfix,jdv-6/tika-core=
|llite_5/tika=notaffected |wontfix,rhn_satellite_5/tik
| |a=notaffected
--- Comment #7 from Chess Hazlett <chazlett(a)redhat.com> ---
FSW, BxMS, JDV are out of support scope for this level of impact. marking
WONTFIX.
--
You are receiving this mail because:
You are on the CC list for the bug.
5 years, 1 month
[Bug 1465573] CVE-2017-7536 hibernate-validator: Privilege escalation when running under the security manager
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1465573
Chess Hazlett <chazlett(a)redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Whiteboard|impact=moderate,public=2017 |impact=moderate,public=2017
|0926,reported=20170627,sour |0926,reported=20170627,sour
|ce=redhat,cvss3=6.3/CVSS:3. |ce=redhat,cvss3=6.3/CVSS:3.
|0/AV:L/AC:H/PR:L/UI:N/S:U/C |0/AV:L/AC:H/PR:L/UI:N/S:U/C
|:H/I:H/A:N,fedora-all/hiber |:H/I:H/A:N,fedora-all/hiber
|nate-validator=affected,bpm |nate-validator=affected,bpm
|s-6/hibernate-validator=not |s-6/hibernate-validator=not
|affected,brms-6/hibernate-v |affected,brms-6/hibernate-v
|alidator=notaffected,jdg-6/ |alidator=notaffected,jdg-6/
|hibernate-validator=new,jdg |hibernate-validator=notaffe
|-7/hibernate-validator=new, |cted,jdg-7/hibernate-valida
|jdv-6/hibernate-validator=n |tor=new,jdv-6/hibernate-val
|otaffected,eap-5/hibernate- |idator=notaffected,eap-5/hi
|validator=new,eap-6/hiberna |bernate-validator=new,eap-6
|te-validator=affected,eap-7 |/hibernate-validator=affect
|/hibernate-validator=affect |ed,eap-7/hibernate-validato
|ed,soap-5/hibernate-validat |r=affected,soap-5/hibernate
|or=notaffected,fsw-6/hibern |-validator=notaffected,fsw-
|ate-validator=notaffected,f |6/hibernate-validator=notaf
|use-6/camel=wontfix,jon-3/h |fected,fuse-6/camel=wontfix
|ibernate-validator=new,jpp- |,jon-3/hibernate-validator=
|6/hibernate-validator=new,o |new,jpp-6/hibernate-validat
|penshift-enterprise-2/hiber |or=new,openshift-enterprise
|nate-validator=wontfix,rhev |-2/hibernate-validator=wont
|-m-3/hibernate-validator=wo |fix,rhev-m-3/hibernate-vali
|ntfix,rhn_satellite_6/hiber |dator=wontfix,rhn_satellite
|nate-validator=affected,rhm |_6/hibernate-validator=affe
|ap-4/hibernate-validator=no |cted,rhmap-4/hibernate-vali
|taffected,rhev-m-4/eap7-hib |dator=notaffected,rhev-m-4/
|ernate-validator=affected,f |eap7-hibernate-validator=af
|is-2/hibernate-validator=af |fected,fis-2/hibernate-vali
|fected,fuse-7/camel=notaffe |dator=affected,fuse-7/camel
|cted,swarm-7/hibernate-vali |=notaffected,swarm-7/hibern
|dator=notaffected,springboo |ate-validator=notaffected,s
|t-1/hibernate-validator=not |pringboot-1/hibernate-valid
|affected |ator=notaffected
--
You are receiving this mail because:
You are on the CC list for the bug.
5 years, 1 month