Uploaded image for project: 'PUBLIC - Liferay Portal Enterprise Edition'
  1. PUBLIC - Liferay Portal Enterprise Edition
  2. LPE-16208

Denial of service vulnerability when using Xuggler

    Details

    • Fix Pack Status:
      Scheduled
    • 7.0 Fix Pack Version:
      33

      Description

      Denial of service vulnerability when using Xuggler.

      When Xuggler is enabled for video conversion, a large number of temporary files may be created during video playback, which allow remote users to cause a denial of service (DoS) vulnerability (disk consumption).

      See also https://web.liferay.com/group/customer/products/portal/security-vulnerability/lsv-363

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                joshua.cords Joshua Cords
                Reporter:
                javier.moral Javier Moral
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Packages

                  Version Package
                  6.1.X EE
                  6.2.X EE
                  7.0.X EE