[LPS-67686] Denial of service vulnerability in Apache Santuario - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Resolution: Duplicate
Affects Version/s: 7.0.1 CE GA2
Fix Version/s: 7.0.2 CE GA3
Component/s: Core Infrastructure, Security Vulnerability
Labels:
- cst-patch

Description

Apache Santuario is vulnerable to a denial of service attack via crafted DTDs and signatures.

Attachments

Activity

People

Assignee:

Samuel Kong

Reporter:

Samuel Kong

Participants of an Issue:

Samuel Kong

Recent user:

Esther Sanz

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

19/Aug/16 1:33 AM

Updated:

23/Aug/16 2:19 PM

Resolved:

19/Aug/16 1:34 AM

Days since last comment:

3 years, 41 weeks, 4 days ago

Packages

Version	Package
7.0.2 CE GA3