[
https://issues.apache.org/jira/browse/CXF-8450?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17316908#comment-17316908
]
Mantas Gridinas commented on CXF-8450:
--
Right. Should be good to go.
> Cached JAXB da
Martin created CXF-8453:
---
Summary: DOS vulnerability in bearer token parsing
Key: CXF-8453
URL: https://issues.apache.org/jira/browse/CXF-8453
Project: CXF
Issue Type: Bug
Components: JAX-RS
Martin created CXF-8454:
---
Summary: DOS vulnerability in bearer token parsing
Key: CXF-8454
URL: https://issues.apache.org/jira/browse/CXF-8454
Project: CXF
Issue Type: Bug
Components: JAX-RS
[
https://issues.apache.org/jira/browse/CXF-8453?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Martin closed CXF-8453.
---
Resolution: Duplicate
> DOS vulnerability in bearer token parsing
> -
>
>
[
https://issues.apache.org/jira/browse/CXF-8453?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Colm O hEigeartaigh deleted CXF-8453:
-
> DOS vulnerability in bearer token parsing
> -
>
>
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Colm O hEigeartaigh reassigned CXF-8454:
Assignee: Colm O hEigeartaigh
> DOS vulnerability in bearer token parsing
>
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Martin updated CXF-8454:
Description:
I stumbled upon this vulnerability when I accidentaly copied the following
shortened Base64 bearer toke
[
https://issues.apache.org/jira/browse/CXF-8450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang updated CXF-8450:
--
Summary: Make JAXBDatabinding extendable (was: Cached JAXB databinding )
> Make JAXBDatabinding
[
https://issues.apache.org/jira/browse/CXF-8451?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317228#comment-17317228
]
Freeman Yue Fang commented on CXF-8451:
---
Hi [~stephenpatten],
This isn't a bug. Sinc
[
https://issues.apache.org/jira/browse/CXF-8452?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang reassigned CXF-8452:
-
Assignee: Freeman Yue Fang
> Upgrade of cxf to version greater than 3.2.2 resulting in SOA
[
https://issues.apache.org/jira/browse/CXF-8452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317238#comment-17317238
]
Freeman Yue Fang commented on CXF-8452:
---
Hi [~vevasant],
When the response soap mess
[
https://issues.apache.org/jira/browse/CXF-8452?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang resolved CXF-8452.
---
Resolution: Information Provided
> Upgrade of cxf to version greater than 3.2.2 resulting in SO
[
https://issues.apache.org/jira/browse/CXF-8450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang updated CXF-8450:
--
Issue Type: Improvement (was: New Feature)
> Make JAXBDatabinding extendable
> -
[
https://issues.apache.org/jira/browse/CXF-8451?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang resolved CXF-8451.
---
Resolution: Information Provided
> Logging Feature: MTOM endpoint logs binary data on REQ_IN
>
[
https://issues.apache.org/jira/browse/CXF-8450?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317267#comment-17317267
]
Freeman Yue Fang commented on CXF-8450:
---
patch merged on behalf of [~Dragas] with tha
[
https://issues.apache.org/jira/browse/CXF-8450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Yue Fang resolved CXF-8450.
---
Fix Version/s: 3.4.4
Resolution: Fixed
> Make JAXBDatabinding extendable
> -
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Colm O hEigeartaigh updated CXF-8454:
-
Fix Version/s: 3.3.11
3.4.4
> DOS vulnerability in bearer token parsing
[
https://issues.apache.org/jira/browse/CXF-8452?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317354#comment-17317354
]
Veeksha A V commented on CXF-8452:
--
Hi Freeman Yue Fang, can we have a some explanation wh
[
https://issues.apache.org/jira/browse/CXF-8452?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Veeksha A V updated CXF-8452:
-
Comment: was deleted
(was: Hi Freeman Yue Fang, can we have a some explanation why it is closed ?)
> Upgra
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Colm O hEigeartaigh resolved CXF-8454.
--
Resolution: Fixed
> DOS vulnerability in bearer token parsing
> -
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317388#comment-17317388
]
Colm O hEigeartaigh commented on CXF-8454:
--
Thanks for the report - I have pushed
[
https://issues.apache.org/jira/browse/CXF-8442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andriy Redko updated CXF-8442:
--
Fix Version/s: 3.3.11
3.4.4
3.5.0
> java.io.IOException: closed whe
[
https://issues.apache.org/jira/browse/CXF-8442?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andriy Redko updated CXF-8442:
--
Affects Version/s: 3.3.10
> java.io.IOException: closed when compiled and run with Java 16
> ---
Andriy Redko created CXF-8455:
-
Summary: Support Java Records (JDK16+)
Key: CXF-8455
URL: https://issues.apache.org/jira/browse/CXF-8455
Project: CXF
Issue Type: Improvement
Components:
[
https://issues.apache.org/jira/browse/CXF-8455?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Andriy Redko updated CXF-8455:
--
Fix Version/s: 3.5.0
> Support Java Records (JDK16+)
> -
>
>
[
https://issues.apache.org/jira/browse/CXF-8454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17317691#comment-17317691
]
Martin commented on CXF-8454:
-
I can confirm that the SNAPSHOT code fixes the issue.
> DOS vul
26 matches
Mail list logo