Details

      Description

      The default GenericPortlet implementation is vulnerable to denial-of-service (DoS) attacks and information leak (CVE-2015-1926).

      As a part of this fix, the JSR 286 Specification JAR (portlet.jar) has been updated to version 2.1.

        Attachments

          Activity

            People

            • Assignee:
              samuel.kong Samuel Kong
              Reporter:
              samuel.kong Samuel Kong
              Participants of an Issue:
              Recent user:
              Esther Sanz
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Days since last comment:
                3 years, 46 weeks, 5 days ago