June 2019 - java-sig-commits - Fedora Mailing-Lists

[Bug 1410481] CVE-2017-2582 picketlink, keycloak: SAML request parser replaces special strings with system properties

by bugzilla＠redhat.com

4 years, 10 months

1
0
0 / 0

[Bug 1410481] CVE-2017-2582 picketlink, keycloak: SAML request parser replaces special strings with system properties

by bugzilla＠redhat.com

4 years, 10 months

1
0
0 / 0

[Bug 1622774] CVE-2018-8006 activemq: Cross-site scripting (XSS) via QueueFilter parameter

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1622774 Martin Prpič <mprpic(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(security-response | |-team(a)redhat.com) | -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 10 months

1
0
0 / 0

[Bug 1516064] gradle-5.4.1 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1516064 Fabio Valentini <decathorpe(a)gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|gradle-5.5.0-RC3 is |gradle-5.4.1 is available |available | -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 10 months

1
0
0 / 0

[Bug 1516064] gradle-5.5.0-RC3 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1516064 Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|gradle-5.4.1 is available |gradle-5.5.0-RC3 is | |available --- Comment #37 from Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> --- Latest upstream release: 5.5.0-RC3 Current version/release in rawhide: 4.4.1-3.fc31 URL: http://www.gradle.org/ Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from anitya: https://release-monitoring.org/project/6088/ -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 10 months

1
0
0 / 0

[Bug 1346528] jenkins-remoting-3.31 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1346528 Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|jenkins-remoting-3.30 is |jenkins-remoting-3.31 is |available |available --- Comment #29 from Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> --- Latest upstream release: 3.31 Current version/release in rawhide: 2.62.3-1.fc26 URL: https://github.com/jenkinsci/remoting Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from anitya: https://release-monitoring.org/project/1444/ -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 10 months

1
0
0 / 0

[Bug 1622774] CVE-2018-8006 activemq: Cross-site scripting (XSS) via QueueFilter parameter

by bugzilla＠redhat.com

4 years, 10 months

1
0
0 / 0

[Bug 1550671] CVE-2018-1067 undertow: HTTP header injection using CRLF with UTF-8 Encoding (incomplete fix of CVE-2016-4993)

by bugzilla＠redhat.com

4 years, 10 months

1
0
0 / 0

[Bug 1629083] CVE-2018-11775 activemq: ActiveMQ Client Missing TLS Hostname Verification

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1629083 --- Comment #9 from Joshua Padman <jpadman(a)redhat.com> --- This vulnerability is out of security support scope for the following product: * Red Hat JBoss A-MQ 6 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 10 months

1
0
0 / 0

[Bug 1629083] CVE-2018-11775 activemq: ActiveMQ Client Missing TLS Hostname Verification

by bugzilla＠redhat.com

4 years, 10 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits June 2019