java-sig-commits

java-sig-commits@lists.fedoraproject.org
  • 1 participants
  • 262 discussions
[Bug 1818165] New: jmock-2.12.0 is available
by bugzilla@redhat.com
2 days, 14 hours
[Bug 1816216] New: netty: compression/decompression codecs don't enforce limits on buffer allocation sizes
by bugzilla@redhat.com
3 days, 17 hours
[Bug 1796858] New: CVE-2019-10782 checkstyle: XML External Entity Injection due to an incomplete fix for CVE-2019-9658
by bugzilla@redhat.com
4 days, 6 hours
[Bug 1801149] New: CVE-2019-13990 libquartz-java: XXE attacks via job description
by bugzilla@redhat.com
5 days, 16 hours
[Bug 1826805] New: CVE-2020-11619 jackson-databind: Serialization gadgets in org.springframework:spring-aop
by bugzilla@redhat.com
5 days, 17 hours
[Bug 1826798] New: CVE-2020-11620 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly
by bugzilla@redhat.com
5 days, 17 hours
[Bug 1821315] New: CVE-2020-11113 jackson-databind: jackson-databind: mishandles the interaction between serialization gadgets and typing related to org.apache.openjpa.ee.WASRegistryManagedRuntime which could result in remote command execution
by bugzilla@redhat.com
5 days, 17 hours
[Bug 1821311] New: CVE-2020-11112 jackson-databind: jackson-databind: mishandles the interaction between serialization gadgets and typing related to org.apache.commons.proxy.provider.remoting.RmiProvider which could result in remote command execution
by bugzilla@redhat.com
5 days, 17 hours
[Bug 1821304] New: CVE-2020-11111 jackson-databind: jackson-databind: mishandles the interaction between serialization gadgets and typing related to org.apache.activemq.* which could result in remote command execution
by bugzilla@redhat.com
5 days, 17 hours
[Bug 1819208] New: CVE-2020-10968 jackson-databind: serialization gadgets in bus-proxy
by bugzilla@redhat.com
5 days, 17 hours
Results per page: