Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Done
Priority: Major
Fix Version/s: 7.4.15.CR1, 7.4.15.GA
Affects Version/s: None
Component/s: EJB
Labels:
- upstream-fixed

Blocked:
False
Blocked Reason:
None
Ready:
False
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.4.z.GA
Git Pull Request:
https://github.com/wildfly/wildfly-transaction-client/pull/185
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

As described in ~~WFLY-14769~~ there is a possibility to access UserTransaction object using txn namespace lookup when it is not allowed by the EJB spec. We have to introduce a access checking mechanism so that this access is prevented.

blocks

JBEAP-22637 [GSS](7.4.z) WFLY-14769 - Lookup of txn:LocalUserTransaction makes it possible to illegally use UserTransaction in a CMT context

Closed

clones

WFTC-138 Add access checking API to TxnNamingContextFactory

Resolved

is incorporated by

JBEAP-26266 (7.4.z) Upgrade WildFly Transaction Client to 1.1.17.Final-redhat-00001

Closed

is related to

WFTC-140 Upgrade wildfly-transaction-client to 3.0.3.Final

Closed

WFLY-18845 Upgrade wildfly-transaction-client to 3.0.3.Final

Closed

Assignee:: Ivo Studensky

Reporter:: Ivo Studensky

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/12/12 1:47 PM

Updated:: 2024/08/19 2:10 PM

Resolved:: 2023/12/12 2:13 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates