[jboss-jira] [JBoss JIRA] Commented: (GPD-278) Security issue allows arbitrary java code to be deployed and executed
Ronald van Kuijk (JIRA)
jira-events at lists.jboss.org
Tue Dec 30 22:19:54 EST 2008
[ https://jira.jboss.org/jira/browse/GPD-278?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12444306#action_12444306 ]
Ronald van Kuijk commented on GPD-278:
--------------------------------------
Thomas,
Instead of just changing the issue from major to critical, could you also comment on the statements being made? Since most of the discussion is *not* about the deployer and therefore *not* something that should be fixed in the GPD
> Security issue allows arbitrary java code to be deployed and executed
> ---------------------------------------------------------------------
>
> Key: GPD-278
> URL: https://jira.jboss.org/jira/browse/GPD-278
> Project: JBoss jBPM GPD
> Issue Type: Bug
> Components: jpdl
> Reporter: Thomas Diesler
> Assignee: Koen Aers
> Priority: Critical
> Fix For: jBPM jPDL Designer 3.1.7
>
>
> The GPD circumvents the JBoss deployer architecture and hence allows arbitrary code to be executed on the AS
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list