jackrabbit-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alexander Klimetschek <aklim...@adobe.com>
Subject Re: Shellshock (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277)
Date Mon, 29 Sep 2014 21:04:34 GMT
Jackrabbit itself doesn't use cgi or bash scripts.

Cheers,
Alex

On 29.09.2014, at 12:59, Ricardo Iramar dos Santos <riramar@gmail.com> wrote:

> Hi All,
> 
> Probably you've already heard about Shellshock
> (https://shellshocker.net) in the last few days and I didn't find any
> discussion about it here.
> Some of the projects that I work for are using jackrabbit 2.8 and I'd
> like to know from jackrabbit developers if we should concerning about
> shellshock.
> I don't think that it could have any impact but I decided just open
> the discussion here so maybe any expert could give some tip.
> 
> Thanks
> Ricardo


Mime
View raw message