xmlgraphics-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r1010655 - in /websites/staging/xmlgraphics/trunk/content: ./ security.html
Date Tue, 18 Apr 2017 07:54:18 GMT
Author: buildbot
Date: Tue Apr 18 07:54:17 2017
New Revision: 1010655

Staging update by buildbot for xmlgraphics

    websites/staging/xmlgraphics/trunk/content/   (props changed)

Propchange: websites/staging/xmlgraphics/trunk/content/
--- cms:source-revision (original)
+++ cms:source-revision Tue Apr 18 07:54:17 2017
@@ -1 +1 @@

Modified: websites/staging/xmlgraphics/trunk/content/security.html
--- websites/staging/xmlgraphics/trunk/content/security.html (original)
+++ websites/staging/xmlgraphics/trunk/content/security.html Tue Apr 18 07:54:17 2017
@@ -179,13 +179,22 @@ h2:hover > .headerlink, h3:hover > .head
 <h2 id="PublishedVulnerabilities">Published Vulnerabilities<a class="headerlink"
href="#PublishedVulnerabilities" title="Permanent link">&para;</a></h2>
 <p>The <em>Apache&trade; XML Graphics Project</em> has collected its
Security related information for all of its sub-projects to this page.</p>
 <h3 id="BatikSecurity">Apache&trade; Batik Project - Apache Batik Security<a
class="headerlink" href="#BatikSecurity" title="Permanent link">&para;</a></h3>
+<p><strong>Fixed in Batik 1.9</strong></p>
+<p>medium: XXE vulnerability CVE-2017-5662</p>
+<p>Issue Public: 2017-04-18</p>
+<p>Update Released: 2017-04-10 (Batik 1.9)</p>
+<p>Affects: 1.8 and earlier</p>
 <p><strong>Fixed in Batik 1.8, 1.7.1 and 1.6.1</strong></p>
 <p>medium: XXE vulnerability CVE-2015-0250</p>
 <p>Issue Public: 2012-07-25</p>
 <p>Update Released: 2015-03-17 (Batik 1.8) and 2015-05-10 (Batik 1.7.1 and 1.6.1)</p>
 <p>Affects: 1.7, 1.6 and earlier</p>
 <h3 id="FOPSecurity">Apache&trade; FOP Project - Apache FOP Security<a class="headerlink"
href="#FOPSecurity" title="Permanent link">&para;</a></h3>
-<p>At the time of the most recent update, the <a href="http://xmlgraphics.apache.org/fop/">Apache
FOP Project</a> has no published vulnerabilities.</p>
+<p><strong>Fixed in FOP 2.2</strong></p>
+<p>medium: XXE vulnerability CVE-2017-5661</p>
+<p>Issue Public: 2017-04-18</p>
+<p>Update Released: 2017-04-10 (FOP 2.2)</p>
+<p>Affects: 2.1 and earlier</p>
 <h3 id="XMLGraphicsCommonsSecurity">Apache&trade; XML Graphics Commons Project
- Apache XML Graphics Commons Security<a class="headerlink" href="#XMLGraphicsCommonsSecurity"
title="Permanent link">&para;</a></h3>
 <p>At the time of the most recent update, the <a href="http://xmlgraphics.apache.org/commons/">Apache
 XML Graphics Commons Project</a> has no published vulnerabilities.</p>
 <h2 id="ReportingSecurityProblems">Reporting New Security Problems with the Apache
XML Graphics Sub Projects<a class="headerlink" href="#ReportingSecurityProblems" title="Permanent

To unsubscribe, e-mail: commits-unsubscribe@xmlgraphics.apache.org
For additional commands, e-mail: commits-help@xmlgraphics.apache.org

View raw message