This is an automated email from the ASF dual-hosted git repository.
sseifert pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/sling-site.git
The following commit(s) were added to refs/heads/master by this push:
new 3821f846c Fixing small typo in news.md
3821f846c is described below
commit 3821f846cb566454a0ef0b95af8480b26b4ded15
Author: Antonio <[email protected]>
AuthorDate: Thu May 11 10:54:41 2023 +0200
Fixing small typo in news.md
---
src/main/jbake/content/news.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/main/jbake/content/news.md b/src/main/jbake/content/news.md
index 5f84eef9b..3d3b68982 100644
--- a/src/main/jbake/content/news.md
+++ b/src/main/jbake/content/news.md
@@ -5,7 +5,7 @@ tags=news
tableOfContents=false
~~~~~~
-* Vulneraiblity report and fix: CVE-2022-37734: Apache GraphQL Core: Upgraded
graphql-java to version 20.1 which contains the fix for the vulnerability, see
[https://www.cve.org/CVERecord?id=CVE-2022-37734](https://www.cve.org/CVERecord?id=CVE-2022-37734)
+* Vulnerability report and fix: CVE-2022-37734: Apache GraphQL Core: Upgraded
graphql-java to version 20.1 which contains the fix for the vulnerability, see
[https://www.cve.org/CVERecord?id=CVE-2022-37734](https://www.cve.org/CVERecord?id=CVE-2022-37734)
* Vulnerability report and fix: CVE-2022-45064: Apache Sling Engine:
Include-based XSS (April 12th, 2023), see
[https://www.cve.org/CVERecord?id=CVE-2022-45064](https://www.cve.org/CVERecord?id=CVE-2022-45064)
* Vulnerability report and fix: CVE-2023-26513: Apache Sling Resource Merger:
Requests to certain paths managed by the Apache Sling Resource Merger can lead
to DoS (Mar 20th, 2023), see
[https://www.cve.org/CVERecord?id=CVE-2023-26513](https://www.cve.org/CVERecord?id=CVE-2023-26513)
* Vulnerability report and fix: CVE-2023-25621: Apache Sling does not allow to
handle i18n content in a secure way (Feb 23rd, 2023), see
[https://www.cve.org/CVERecord?id=CVE-2023-25621](https://www.cve.org/CVERecord?id=CVE-2023-25621)
