August 2019 - java-sig-commits - Fedora Mailing-Lists

[Bug 1579611] CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1579611 --- Comment #23 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2205 https://access.redhat.com/errata/RHSA-2019:2205 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1548289] CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1548289 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- External Bug ID| |Red Hat Product Errata | |RHSA-2019:2205 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1548282] CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1548282 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- External Bug ID| |Red Hat Product Errata | |RHSA-2019:2205 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1548289] CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended exposure of resources

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1548289 --- Comment #26 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2205 https://access.redhat.com/errata/RHSA-2019:2205 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1548282] CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1548282 --- Comment #17 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2205 https://access.redhat.com/errata/RHSA-2019:2205 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1493222] CVE-2017-12616 tomcat: Information Disclosure when using VirtualDirContext

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1493222 --- Comment #12 from Joshua Padman <jpadman(a)redhat.com> --- This vulnerability is out of security support scope for the following product: * Red Hat JBoss Web Server 3 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1409838] CVE-2016-9879 Spring Security: Improper handling of path parameters allows bypassing the security constraint

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1409838 --- Comment #5 from Joshua Padman <jpadman(a)redhat.com> --- This vulnerability is out of security support scope for the following product: * Red Hat JBoss Fuse 6 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1548282] CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1548282 --- Comment #16 from Joshua Padman <jpadman(a)redhat.com> --- This vulnerability is out of security support scope for the following products: * Red Hat JBoss Web Server 3 * Red Hat JBoss Web Server 3 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 8 months

1
0
0 / 0

[Bug 1604769] lz4-java: FTBFS in Fedora rawhide

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1604769 Fedora Update System <updates(a)fedoraproject.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Fixed In Version| |lz4-java-1.3.0-11.fc29 Resolution|--- |ERRATA Last Closed| |2019-08-02 02:45:36 --- Comment #8 from Fedora Update System <updates(a)fedoraproject.org> --- lz4-java-1.3.0-11.fc29 has been pushed to the Fedora 29 stable repository. If problems still persist, please make note of it in this bug report. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 9 months

1
0
0 / 0

[Bug 1675344] New: lz4-java: FTBFS in Fedora rawhide/f30

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1675344 Bug ID: 1675344 Summary: lz4-java: FTBFS in Fedora rawhide/f30 Product: Fedora Version: rawhide Status: NEW Component: lz4-java Assignee: puntogil(a)libero.it Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: java-sig-commits(a)lists.fedoraproject.org, puntogil(a)libero.it Blocks: 1674516 Target Milestone: --- Classification: Fedora lz4-java failed to build from source in Fedora rawhide/f30 https://koji.fedoraproject.org/koji/taskinfo?taskID=32412377 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild Please fix lz4-java at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, lz4-java will be orphaned. Before branching of Fedora 31, lz4-java will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://fedoraproject.org/wiki/Fails_to_build_from_source Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1674516 [Bug 1674516] (F30FTBFS) - Fedora 30 Mass Rebuild FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 9 months

1
13
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits August 2019