[jboss-jira] [JBoss JIRA] (AS7-4747) xercesImpl-2.9.1-jbossas-1.jar is susceptible to CVE-2009-2625 (DoS Attack)

Tue May 8 21:56:17 EDT 2012

Arun Neelicattu created AS7-4747:
------------------------------------

             Summary: xercesImpl-2.9.1-jbossas-1.jar is susceptible to CVE-2009-2625 (DoS Attack)
                 Key: AS7-4747
                 URL: https://issues.jboss.org/browse/AS7-4747
             Project: Application Server 7
          Issue Type: Bug
    Affects Versions: 7.1.1.Final
            Reporter: Arun Neelicattu


The current version of xerces (_xercesImpl-2.9.1-jbossas-1.jar_) is vulnerable to [CVE-2009-2625|https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2625]

This vulnerability was fixed in xerces versions >= 2.10

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira