Re: [faces-dev] A vulnerability report requires your attention

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [faces-dev] A vulnerability report requires your attention

From: Wayne Beaton <wayne.beaton@xxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 21 Oct 2021 15:04:48 -0400
Delivered-to: faces-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/faces-dev/>
List-help: <mailto:faces-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/faces-dev>, <mailto:faces-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/faces-dev>, <mailto:faces-dev-request@eclipse.org?subject=unsubscribe>

FYI, I took a harder look at the report and determined that the vulnerability is actually with the implementation in Eclipse Mojarra. I'll contact the project team shortly.

FWIW, issues marked as "confidential" in Bugzilla are accessible by anybody who holds committer status on any Eclipse project.

Wayne

On Mon, Sep 27, 2021 at 5:17 PM Wayne Beaton <wayne.beaton@xxxxxxxxxxxxxxxxxxxxxx> wrote:

Greetings Jakarta Faces project team.

An issue has been opened regarding a potential vulnerability in Jakarta Faces.

I won't post the details here. Can a project committer please review this issue? The issue has been marked confidential so this link will only be accessible to committers.

Our policies and practices regarding how we manage vulnerability reports are captured in the handbook.

Wayne
--
Wayne Beaton
Director of Open Source Projects | Eclipse Foundation

Wayne Beaton

Director of Open Source Projects | Eclipse Foundation

References:
- [faces-dev] A vulnerability report requires your attention
  - From: Wayne Beaton

Prev by Date: [faces-dev] faces-api issue #1471
Next by Date: Re: [faces-dev] Problem building faces-api
Previous by thread: [faces-dev] A vulnerability report requires your attention
Next by thread: [faces-dev] Problem building faces-api
Index(es):
- Date
- Thread

Breadcrumbs