[jboss-jira] [JBoss JIRA] (WFLY-4018) CVE-2014-3623 Web Services flaw
Alessio Soldano (JIRA)
issues at jboss.org
Mon Oct 27 05:08:35 EDT 2014
[ https://issues.jboss.org/browse/WFLY-4018?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Alessio Soldano updated WFLY-4018:
----------------------------------
Summary: CVE-2014-3623 Web Services flaw (was: CVE-2014-3584 CVE-2014-3623 Web Services: various flaws [wildfly])
> CVE-2014-3623 Web Services flaw
> -------------------------------
>
> Key: WFLY-4018
> URL: https://issues.jboss.org/browse/WFLY-4018
> Project: WildFly
> Issue Type: Bug
> Components: Web Services
> Affects Versions: 8.1.0.Final, 9.0.0.Alpha1
> Reporter: Arun Neelicattu
> Assignee: Alessio Soldano
> Labels: CVE-2014-3584, CVE-2014-3623, component:cxf, component:wss4j
>
> WildFly tracking bug for multiple vulnerabilities affecting the Web Services component.
> See [CVE-2014-3584|https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3584] and [CVE-2014-3623|https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3623] for more information regarding the flaws.
> Upgrading cxf to 2.7.13 and wss4j to 1.6.17 will resolve this.
--
This message was sent by Atlassian JIRA
(v6.3.1#6329)
More information about the jboss-jira
mailing list