CVE-2018-14371 jsf-impl: mojarra: Path traversal in ResourceManager.java:getLocalePrefix() via the loc parameter ----------------------------------------------------------------------------------------------------------------- Key: WFLY-13440 URL: https://issues.redhat.com/browse/WFLY-13440 Project: WildFly Issue Type: Bug Components: JSF Reporter: Farah Juma Assignee: Farah Juma Priority: Minor Labels: CVE-2018-14371, Security, SecurityTracking, downstream_dependency, pscomponent:jsf-impl Fix For: 20.0.0.Beta1 CVE-2018-14371 mojarra: Path traversal in ResourceManager.java:getLocalePrefix() via the loc parameter https://bugzilla.redhat.com/show_bug.cgi?id=1607709 This was already fixed upstream: https://github.com/eclipse-ee4j/mojarra/commit/1b434748d9239f42eae8aa7d37...