Repository: guacamole-website Updated Branches: refs/heads/master 9c8a79225 -> a4ac5af9e
Add "Security Reports" page which lists vulnerabilities fixed in Apache Guacamole releases. Project: http://git-wip-us.apache.org/repos/asf/guacamole-website/repo Commit: http://git-wip-us.apache.org/repos/asf/guacamole-website/commit/bd823d25 Tree: http://git-wip-us.apache.org/repos/asf/guacamole-website/tree/bd823d25 Diff: http://git-wip-us.apache.org/repos/asf/guacamole-website/diff/bd823d25 Branch: refs/heads/master Commit: bd823d25fb4e6d973f9d2a45e6379994d9e49938 Parents: 9c8a792 Author: Michael Jumper <mjum...@apache.org> Authored: Sat Jan 6 16:12:22 2018 -0800 Committer: Michael Jumper <mjum...@apache.org> Committed: Sat Jan 6 16:12:22 2018 -0800 ---------------------------------------------------------------------- _config.yml | 4 ++++ _links/security.md | 4 ++-- security.md | 43 +++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 49 insertions(+), 2 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/guacamole-website/blob/bd823d25/_config.yml ---------------------------------------------------------------------- diff --git a/_config.yml b/_config.yml index 9aff937..5ee228d 100644 --- a/_config.yml +++ b/_config.yml @@ -50,6 +50,10 @@ collections: companies: output: false + # Public security vulnerabilities + security: + output: false + # Site-wide defaults defaults: http://git-wip-us.apache.org/repos/asf/guacamole-website/blob/bd823d25/_links/security.md ---------------------------------------------------------------------- diff --git a/_links/security.md b/_links/security.md index 6ddef85..764e3b6 100644 --- a/_links/security.md +++ b/_links/security.md @@ -1,5 +1,5 @@ --- -menu-title: Security +menu-title: Security Reports menu-weight: 4 -location: http://www.apache.org/security/ +location: /security/ --- http://git-wip-us.apache.org/repos/asf/guacamole-website/blob/bd823d25/security.md ---------------------------------------------------------------------- diff --git a/security.md b/security.md new file mode 100644 index 0000000..9bf1ff0 --- /dev/null +++ b/security.md @@ -0,0 +1,43 @@ +--- +layout: page +title: Security Reports +permalink: /security/ +--- + +This page lists all security vulnerabilities fixed in released versions of +Apache Guacamole. Each vulnerability is listed with a description of the +problem, its associated [CVE +number](https://cve.mitre.org/about/faqs.html#what_is_cve_id), and the +Guacamole release in which the vulnerability was fixed. + +Reporting new vulnerabilities +----------------------------- + +If you believe you have discovered a security problem in Apache Guacamole, +please follow [responsible +disclosure](https://en.wikipedia.org/wiki/Responsible_disclosure) practices and +report discovered security issues privately, either to the private security +mailing list of the [ASF Security Team](https://www.apache.org/security/) or +the <priv...@guacamole.apache.org> mailing list, before disclosing or +discussing the issue in a public forum. + +{% assign releases = site.security | group_by: 'fixed' %} +{% for release in releases %} + +Fixed in Apache Guacamole {{ release.name }} +-------------------------------------------- + +<ul> + {% assign reports = release.items | sort: 'title' %} + {% for report in reports %} + <li> + <h3 id="{{ report.cve }}"> + {{ report.title }} + (<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name={{ report.cve | url_encode }}">{{ report.cve }}</a>) + </h3> + {{ report.content }} + </li> + {% endfor %} +</ul> +{% endfor %} +