melloware commented on issue #7: BEANUTILS-520: Mitigate CVE-2014-0114 by
enabling SuppressPropertiesB…
URL: https://github.com/apache/commons-beanutils/pull/7#issuecomment-537182968
I think the seucrity violation is being able to set the property using
property utils. Reading it would be
melloware commented on issue #7: BEANUTILS-520: Mitigate CVE-2014-0114 by
enabling SuppressPropertiesB…
URL: https://github.com/apache/commons-beanutils/pull/7#issuecomment-537178017
Your code is wrong. Change to..
```java
BeanMap beanMap = new BeanMap(oldObject);
PropertyUtil
melloware commented on issue #7: BEANUTILS-520: Mitigate CVE-2014-0114 by
enabling SuppressPropertiesB…
URL: https://github.com/apache/commons-beanutils/pull/7#issuecomment-511772414
@Siebes I hope so. I have been waiting for a 2.0.0 release of BeanUtils for
a while.
melloware commented on issue #7: BEANUTILS-520: Mitigate CVE-2014-0114 by
enabling SuppressPropertiesB…
URL: https://github.com/apache/commons-beanutils/pull/7#issuecomment-495233586
Thanks @garydgregory looks like all checks passed now!
melloware commented on issue #7: BEANUTILS-520: Mitigate CVE-2014-0114 by
enabling SuppressPropertiesB…
URL: https://github.com/apache/commons-beanutils/pull/7#issuecomment-495029626
I am not sure why Travis is failing as all the tests and code is building
with "mvn clean package" on my la