karaf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jbono...@apache.org
Subject [karaf] branch karaf-4.2.x updated: [KARAF-6353] Remove invalid command displayed in the log in shutdown socket to avoid potential security issue
Date Wed, 11 Sep 2019 16:57:03 GMT
This is an automated email from the ASF dual-hosted git repository.

jbonofre pushed a commit to branch karaf-4.2.x
in repository https://gitbox.apache.org/repos/asf/karaf.git


The following commit(s) were added to refs/heads/karaf-4.2.x by this push:
     new d729a45  [KARAF-6353] Remove invalid command displayed in the log in shutdown socket
to avoid potential security issue
d729a45 is described below

commit d729a4556b10aca064c39e1d6b5fad00ee8d0ad8
Author: Jean-Baptiste Onofré <jbonofre@apache.org>
AuthorDate: Sat Sep 7 14:44:56 2019 +0200

    [KARAF-6353] Remove invalid command displayed in the log in shutdown socket to avoid potential
security issue
    
    (cherry picked from commit c670b017d23e0e9102a97f957783eb0ded0970d0)
---
 main/src/main/java/org/apache/karaf/main/ShutdownSocketThread.java | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/main/src/main/java/org/apache/karaf/main/ShutdownSocketThread.java b/main/src/main/java/org/apache/karaf/main/ShutdownSocketThread.java
index 64df3b9..260353d 100644
--- a/main/src/main/java/org/apache/karaf/main/ShutdownSocketThread.java
+++ b/main/src/main/java/org/apache/karaf/main/ShutdownSocketThread.java
@@ -124,8 +124,7 @@ class ShutdownSocketThread extends Thread implements AutoCloseable {
                     break;
                 } else {
                     if (!command.toString().isEmpty()) {
-                        LOG.log(Level.WARNING, "Karaf shutdown socket:  Invalid command '"
+
-                                      command.toString() + "' received");
+                        LOG.log(Level.WARNING, "Karaf shutdown socket:  Invalid command received");
                     }
                 }
             }


Mime
View raw message