Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Duplicate
Priority: Major
Fix Version/s: AMQ 7.4.2.GA
Affects Version/s: None
Component/s: None
Labels:

Target Release:

AMQ 7.4.2.GA
Upstream Jira:
https://issues.apache.org/jira/browse/ARTEMIS-2470
Verified:
Verified in a release
Git Pull Request:
https://github.com/rh-messaging/activemq-artemis/pull/285

Sprint:
AMQ Sprint 3519

SFDC Cases Counter:
SFDC Cases Links:

Description

Apache BeanUtils 1.9.3 was flagged for CVE-2014-0114. Version 1.9.4 fixes this issue. Since there are no other changes in the library a simple version bump suffices.

Attachments

Issue Links

clones

ENTMQBR-2849 CVE-2014-0114 Apache Struts 1: Class Loader manipulation via request parameters [amq-7.4.0]

Closed

is duplicated by

ENTMQBR-3095 CVE-2014-0114 Apache Struts 1: Class Loader manipulation via request parameters [amq-7.4.0]

Closed

relates to

ENTMQBR-2856 Productize commons-beanutils-1.9.4

Closed

Activity

People

Assignee:: Francesco Nigro

Reporter:: Domenico Francesco Bruscino

Tester:: Tiago Bueno

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2019/12/03 3:52 AM

Updated:: 2020/12/21 11:56 AM

Resolved:: 2019/12/03 9:12 AM