[infinispan-issues] [JBoss JIRA] (ISPN-7603) Verify whether custom marshalling is affected by unmarshalling vulnerability
Galder Zamarreño (JIRA)
issues at jboss.org
Mon Mar 13 08:25:01 EDT 2017
Galder Zamarreño created ISPN-7603:
--------------------------------------
Summary: Verify whether custom marshalling is affected by unmarshalling vulnerability
Key: ISPN-7603
URL: https://issues.jboss.org/browse/ISPN-7603
Project: Infinispan
Issue Type: Task
Components: Core, Marshalling
Reporter: Galder Zamarreño
Priority: Critical
Verify whether the Java deserialization vulnerability issue affects our marshalling layer. More info, along with ideas for workarounds (if affected), in:
* [Vulnerability explained|https://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/]
* [Apache Commons message|https://blogs.apache.org/foundation/entry/apache_commons_statement_to_widespread]
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the infinispan-issues
mailing list