camel-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Claus Ibsen (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (CAMEL-11269) URISupport sanitizeUri partial support for RAW()
Date Sat, 13 May 2017 07:53:04 GMT

     [ https://issues.apache.org/jira/browse/CAMEL-11269?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Claus Ibsen updated CAMEL-11269:
--------------------------------
    Fix Version/s: 2.20.0
                   2.19.1
                   2.18.4

> URISupport sanitizeUri partial support for RAW()
> ------------------------------------------------
>
>                 Key: CAMEL-11269
>                 URL: https://issues.apache.org/jira/browse/CAMEL-11269
>             Project: Camel
>          Issue Type: Bug
>          Components: camel-core
>    Affects Versions: 2.19.0
>            Reporter: Paolo Antinori
>            Assignee: Paolo Antinori
>             Fix For: 2.18.4, 2.19.1, 2.20.0
>
>
> The usage of {{&}} symbol in a password wrapped by {{RAW()}} function breaks the
masking of the password.
> The result of this is a partial leak of the clear text password.
> See this example:
> {{password=RAW(abc&SUFFIX)}} is translated into {{password=xxxxxx&SUFFIX}}



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Mime
View raw message