pdfbox-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From le...@apache.org
Subject [pdfbox-docs] branch master updated: added post about CVE-2019-0228
Date Fri, 12 Apr 2019 14:24:00 GMT
This is an automated email from the ASF dual-hosted git repository.

lehmi pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pdfbox-docs.git


The following commit(s) were added to refs/heads/master by this push:
     new b7869c3  added post about CVE-2019-0228
b7869c3 is described below

commit b7869c3e4c62c5dad592e4894ee6a0d86b995959
Author: Andreas Lehmkühler <andreas@lehmi.de>
AuthorDate: Fri Apr 12 16:23:42 2019 +0200

    added post about CVE-2019-0228
---
 content/_posts/2019-04-11-CVE-2019-0228.md | 31 ++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

diff --git a/content/_posts/2019-04-11-CVE-2019-0228.md b/content/_posts/2019-04-11-CVE-2019-0228.md
new file mode 100644
index 0000000..f50c42f
--- /dev/null
+++ b/content/_posts/2019-04-11-CVE-2019-0228.md
@@ -0,0 +1,31 @@
+---
+license: Licensed to the Apache Software Foundation (ASF) under one
+         or more contributor license agreements.  See the NOTICE file
+         distributed with this work for additional information
+         regarding copyright ownership.  The ASF licenses this file
+         to you under the Apache License, Version 2.0 (the
+         "License"); you may not use this file except in compliance
+         with the License.  You may obtain a copy of the License at
+
+           http://www.apache.org/licenses/LICENSE-2.0
+
+         Unless required by applicable law or agreed to in writing,
+         software distributed under the License is distributed on an
+         "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+         KIND, either express or implied.  See the License for the
+         specific language governing permissions and limitations
+         under the License.
+         
+layout:  default
+title:   CVE-2019-0228 XML External Entity vulnerability
+date: "2019-04-12 00:00:00 +0000"
+categories: [news]
+---
+
+Due to a XML External Entity vulnerability we strongly recommend to update to the most recent
version of Apache PDFBox.
+
+**Versions Affected:**
+Apache PDFBox 2.0.14 only
+
+**Mitigation:**
+Upgrade to Apache PDFBox 2.0.15


Mime
View raw message