[java-sig-commits] [Bug 1222573] CVE-2014-7810 Tomcat/JbossWeb: security manager bypass via EL expressions

https://bugzilla.redhat.com/show_bug.cgi?id=1222573 Timothy Walsh <twalsh(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=moderate,public=2015 |impact=moderate,public=2015 |0514,reported=20150514,sour |0514,reported=20150514,sour |ce=internet,cvss2=5.8/AV:N/ |ce=internet,cvss2=5.8/AV:N/ |AC:M/Au:N/C:P/I:P/A:N,rhel- |AC:M/Au:N/C:P/I:P/A:N,rhel- |5/tomcat5=new,rhel-6/tomcat |5/tomcat5=new,rhel-6/tomcat |6=affected,rhel-7/tomcat=af |6=affected,rhel-7/tomcat=af |fected,dts-2.1/devtoolset-2 |fected,dts-2.1/devtoolset-2 |-tomcat=affected,dts-3.0/de |-tomcat=affected,dts-3.0/de |vtoolset-3-tomcat=affected, |vtoolset-3-tomcat=affected, |fedora-all/tomcat=affected, |fedora-all/tomcat=affected, |epel-6/tomcat=affected,jbew |epel-6/tomcat=affected,jbew |s-1/tomcat6=affected,jbews- |s-1/tomcat6=affected,jbews- |2/tomcat6=affected,jbews-2/ |2/tomcat6=affected,jbews-2/ |tomcat7=affected,jdg-6/jbos |tomcat7=affected,jdg-6/jbos |sweb=new,jdv-6/jbossweb=new |sweb=new,jdv-6/jbossweb=new |,eap-6/jbossweb=affected,br |,eap-6/jbossweb=affected,ea |ms-6/jbossweb=new,bpms-6/jb |p-6.3.z/jbossweb=affected,e |ossweb=new,jpp-6/jbossweb=n |ap-6.4.z/jbossweb=affected, |ew,soap-4/jbossweb=new,soap |brms-6/jbossweb=new,bpms-6/ |-5/jbossweb=new,fsw-6/jboss |jbossweb=new,jpp-6/jbossweb |web=new,jon-3/jbossweb=new, |=new,soap-4/jbossweb=new,so |openshift-1/tomcat7=new |ap-5/jbossweb=new,fsw-6/jbo | |ssweb=new,jon-3/jbossweb=ne | |w,openshift-1/tomcat7=new -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=NoOx2DHv5G&a=cc_unsubscribe