shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brian Demers (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SHIRO-518) Shiro-CAS: Security Problem in cas-client-core versions older than 3.3.2
Date Fri, 13 Mar 2015 01:30:39 GMT

    [ https://issues.apache.org/jira/browse/SHIRO-518?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14359747#comment-14359747
] 

Brian Demers commented on SHIRO-518:
------------------------------------

applied patch to 1.2.x, 1.x (1.3) and 2.0-api-design-changes



> Shiro-CAS: Security Problem in cas-client-core versions older than 3.3.2
> ------------------------------------------------------------------------
>
>                 Key: SHIRO-518
>                 URL: https://issues.apache.org/jira/browse/SHIRO-518
>             Project: Shiro
>          Issue Type: Bug
>          Components: Authentication (log-in), Web
>    Affects Versions: 1.2.0, 1.2.1, 1.2.2
>            Reporter: Philipp Berger
>            Assignee: Brian Demers
>            Priority: Blocker
>             Fix For: 1.3.0, 2.0.0, 1.2.4
>
>         Attachments: fix_security_cas_module.patch
>
>   Original Estimate: 20m
>  Remaining Estimate: 20m
>
> There is a Security Problem in cas-client-core for all versions before 3.3.2.
> Please update version of cas-client-core in pom.xml of shiro-cas.
> For more information, please visit the following links:
> https://issues.jasig.org/browse/CASC-228
> https://www.mail-archive.com/cas-user@lists.jasig.org/msg17338.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message