March 2020 - java-sig-commits - Fedora Mailing-Lists

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 errata-xmlrpc <errata-xmlrpc(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Link ID| |Red Hat Product Errata | |RHSA-2020:0860 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 --- Comment #102 from errata-xmlrpc <errata-xmlrpc(a)redhat.com> --- This issue has been addressed in the following products: Red Hat JBoss Web Server Via RHSA-2020:0860 https://access.redhat.com/errata/RHSA-2020:0860 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 Chess Hazlett <chazlett(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1814026 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1799536] New: jboss-servlet-2.5-api: FTBFS in Fedora rawhide/f32

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1799536 Bug ID: 1799536 Summary: jboss-servlet-2.5-api: FTBFS in Fedora rawhide/f32 Product: Fedora Version: rawhide Status: NEW Component: jboss-servlet-2.5-api Assignee: alee(a)redhat.com Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: alee(a)redhat.com, dmoluguw(a)redhat.com, java-sig-commits(a)lists.fedoraproject.org Blocks: 1750908 (F32FTBFS) Target Milestone: --- Classification: Fedora jboss-servlet-2.5-api failed to build from source in Fedora rawhide/f32 https://koji.fedoraproject.org/koji/taskinfo?taskID=41318293 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild Please fix jboss-servlet-2.5-api at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, jboss-servlet-2.5-api will be orphaned. Before branching of Fedora 33, jboss-servlet-2.5-api will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://fedoraproject.org/wiki/Fails_to_build_from_source Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1750908 [Bug 1750908] Fedora 32 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
7
0 / 0

[Bug 1592954] javamail-2.0.0-RC3 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1592954 Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|javamail-2.0.0-RC2 is |javamail-2.0.0-RC3 is |available |available --- Comment #6 from Upstream Release Monitoring <upstream-release-monitoring(a)fedoraproject.org> --- Latest upstream release: 2.0.0-RC3 Current version/release in rawhide: 1.5.2-11.fc32 URL: https://eclipse-ee4j.github.io/mail/ Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from anitya: https://release-monitoring.org/project/1428/ -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1571050] CVE-2018-1271 spring-framework: Directory traversal vulnerability with static resources on Windows filesystems

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1571050 --- Comment #14 from Jonathan Christison <jochrist(a)redhat.com> --- This vulnerability is out of security support scope for the following product: * SOA Platform 5 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details. -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 Mauro Matteo Cascella <mcascell(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1812470 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 Mauro Matteo Cascella <mcascell(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(mcascell(a)redhat.c | |om) | -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

[Bug 1806398] CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1806398 --- Comment #92 from Ted (Jong Seok) Won <jwon(a)redhat.com> --- Mitigation: Please refer to the Red Hat knowledgebase article: https://access.redhat.com/solutions/4851251 -- You are receiving this mail because: You are on the CC list for the bug.

4 years, 1 month

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

java-sig-commits March 2020