commons-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Benedikt Ritter <brit...@apache.org>
Subject Re: [collections][site] publish security-report? (was: svn commit: r1719350 - /commons/proper/collections/trunk/src/site/xdoc/security-reports.xml)
Date Fri, 11 Dec 2015 13:59:26 GMT
2015-12-11 13:16 GMT+01:00 Bernd Eckenfels <ecki@zusammenkunft.net>:

> Hello,
>
> I added a second CVE to the de-serialisation security-report for
> ACC, I dont have the infrastrcuture handy to push the site, can
> somebody do that, please?
>

It usually only takes an mvn site-deploy. Doesn't that work for you?


>
> Gruss
> Bernd
>
> URL: http://svn.apache.org/viewvc?rev=1719350&view=rev
> Log:
> security-report: added CVE-2015-7501 (Red Hat) to de-serialisaton
> references
>
> Modified:
>     commons/proper/collections/trunk/src/site/xdoc/security-reports.xml
>
> Modified:
> commons/proper/collections/trunk/src/site/xdoc/security-reports.xml
> URL:
>
> http://svn.apache.org/viewvc/commons/proper/collections/trunk/src/site/xdoc/security-reports.xml?rev=1719350&r1=1719349&r2=1719350&view=diff
>
> ==============================================================================
> --- commons/proper/collections/trunk/src/site/xdoc/security-reports.xml
> (original) +++
> commons/proper/collections/trunk/src/site/xdoc/security-reports.xml Fri
> Dec 11 11:39:08 2015 @@ -91,6 +91,9 @@ <ol> <li>Vulnerability Report
> for Oracle Weblogic Server: <a
> href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852
> ">CVE-2015-4852</a></li>
> +            <li>Vulnerability Report for Red Hat JBoss products:
> +                <a
> href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7501
> ">CVE-2015-7501</a>
> +                (<a
> href="https://access.redhat.com/security/cve/cve-2015-7501">Red Hat
> Portal</a>)</li> <li>Apache Commons <a
> href="
> https://blogs.apache.org/foundation/entry/apache_commons_statement_to_widespread
> ">statement</a>
> to widespread Java object de-serialisation vulnerability</li>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org
> For additional commands, e-mail: dev-help@commons.apache.org
>
>


-- 
http://people.apache.org/~britter/
http://www.systemoutprintln.de/
http://twitter.com/BenediktRitter
http://github.com/britter

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message