Loading...

XML

Word

Printable

Type: Component Upgrade
Resolution: Done
Priority: Major
Fix Version/s: jbossws-cxf-7.1.0.Final
Affects Version/s: jbossws-cxf-7.0.0.Final
Component/s: jbossws-cxf
Labels:
None

Upgrade santuario(xmlsec) from 3.0.2 to 3.0.3 .

Release notes : https://issues.apache.org/jira/projects/SANTUARIO/versions/12353074

This upgrade includes the fix for CVE-2023-44483: Apache Santuario: Private Key disclosure in debug-log output

(https://nvd.nist.gov/vuln/detail/CVE-2023-44483)

clones

WFLY-18685 Upgrade santuario to 3.0.3 (addresses CVE-2023-44483)

Resolved

Assignee:: Jim Ma

Reporter:: Jim Ma

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2023/10/31 4:12 AM

Updated:: 2024/01/02 2:41 AM

Resolved:: 2024/01/02 2:41 AM