java-sig-commits

java-sig-commits@lists.fedoraproject.org
  • 1 participants
  • 280 discussions
[Bug 1664731] New: CVE-2018-20433 c3p0: XML external entity processing in extractXmlConfigFromInputStream [epel-7]
by bugzilla@redhat.com
9 hours, 46 minutes
[Bug 1709862] New: CVE-2019-5427 c3p0: loading XML configuration leads to denial of service [epel-7]
by bugzilla@redhat.com
9 hours, 46 minutes
[Bug 1797080] New: CVE-2020-2099 jenkins: Inbound TCP Agent Protocol/3 authentication bypass
by bugzilla@redhat.com
3 days, 21 hours
[Bug 1816340] New: CVE-2020-9548 jackson-databind: Serialization gadgets in anteros-core
by bugzilla@redhat.com
3 days, 23 hours
[Bug 1816337] New: CVE-2020-9547 jackson-databind: Serialization gadgets in ibatis-sqlmap
by bugzilla@redhat.com
3 days, 23 hours
[Bug 1816332] New: CVE-2020-9546 jackson-databind: Serialization gadgets in shaded-hikari-config
by bugzilla@redhat.com
3 days, 23 hours
[Bug 1816330] New: CVE-2020-8840 jackson-databind: Lacks certain xbean-reflect/JNDI blocking
by bugzilla@redhat.com
3 days, 23 hours
[Bug 1819093] New: CVE-2020-2110 jenkins-2-plugins: sandbox protection bypass during script compilation phase by applying AST transforming annotations
by bugzilla@redhat.com
6 days, 21 hours
[Bug 1819091] New: CVE-2020-2134 jenkins-2-plugins: sandbox protection bypass via crafted constructor calls and crafted constructor bodies
by bugzilla@redhat.com
6 days, 21 hours
[Bug 1819078] New: CVE-2020-2135 jenkins-2-plugins: sandbox protection bypass leads to arbitrary code execution
by bugzilla@redhat.com
6 days, 21 hours
Results per page: