[jboss-jira] [JBoss JIRA] Commented: (GPD-278) Security issue allows arbitrary java code to be deployed and executed
Ronald van Kuijk (JIRA)
jira-events at lists.jboss.org
Mon Dec 15 08:10:37 EST 2008
[ https://jira.jboss.org/jira/browse/GPD-278?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12442549#action_12442549 ]
Ronald van Kuijk commented on GPD-278:
--------------------------------------
As I mentioned in SOA-1065, this is for me totallty unrelated (but if someone can prove otherwise, I'd be happy to change my point of view). Changing the deployer so drastically shoud (imo) go into GPD 4 and not a micro/patch release.
> Security issue allows arbitrary java code to be deployed and executed
> ---------------------------------------------------------------------
>
> Key: GPD-278
> URL: https://jira.jboss.org/jira/browse/GPD-278
> Project: JBoss jBPM GPD
> Issue Type: Bug
> Components: jpdl
> Reporter: Thomas Diesler
> Assignee: Koen Aers
>
> The GPD circumvents the JBoss deployer architecture and hence allows arbitrary code to be executed on the AS
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list