[GitHub] activemq pull request #321: Enable secure processing on all DocumentBuilderF...

coheigea Thu, 22 Nov 2018 02:26:11 -0800

GitHub user coheigea opened a pull request:

    https://github.com/apache/activemq/pull/321


    Enable secure processing on all DocumentBuilderFactory.newInstance()

    Good security practices say that all DocumentBuilderFactory instances 
should enable the secure processing feature and disable doctypes to avoid XXE 
attacks.

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/coheigea/activemq dbf_secureproc

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/activemq/pull/321.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #321
    
----
commit a87b61e8be13f190c0f5db422e75a08f347c4052
Author: Colm O hEigeartaigh <coheigea@...>
Date:   2018-11-22T10:24:43Z

    Enable secure processing on all DocumentBuilderFactory.newInstance()

----


---

[GitHub] activemq pull request #321: Enable secure processing on all DocumentBuilderF...

Reply via email to