[jboss-jira] [JBoss JIRA] Commented: (GPD-278) Security issue allows arbitrary java code to be deployed and executed
[
https://jira.jboss.org/jira/browse/GPD-278?page=com.atlassian.jira.plugin...
]
Ronald van Kuijk commented on GPD-278:
--------------------------------------
Thomas,
Instead of just changing the issue from major to critical, could you also comment on the
statements being made? Since most of the discussion is *not* about the deployer and
therefore *not* something that should be fixed in the GPD
Security issue allows arbitrary java code to be deployed and
executed
---------------------------------------------------------------------
Key: GPD-278
URL: https://jira.jboss.org/jira/browse/GPD-278
Project: JBoss jBPM GPD
Issue Type: Bug
Components: jpdl
Reporter: Thomas Diesler
Assignee: Koen Aers
Priority: Critical
Fix For: jBPM jPDL Designer 3.1.7
The GPD circumvents the JBoss deployer architecture and hence allows arbitrary code to be
executed on the AS
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira