[JWS-349] Session serialization safety - CVE-2016-0714 moderate - Red Hat Issue Tracker

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: JWS 3.0.3 ER1
Affects Version/s: JWS 3.0.2 GA
Component/s: tomcat7, tomcat8
Labels:
None

Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1322797, https://bugzilla.redhat.com/show_bug.cgi?id=1322798
CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

JWS 3.0.3 GA

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Tomcat 7:
http://svn.apache.org/r1726923
http://svn.apache.org/r1727034

Tomcat 8:
http://svn.apache.org/r1726196
http://svn.apache.org/r1726203

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

Tomcat-8.0.18_CVE-2016-0714.patch
30 kB
2016/02/25 5:35 AM

Assignee:: Coty Sutherland

Reporter:: Remy Maucherat

Tester:: Bogdan Sikora (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2016/02/25 5:37 AM

Updated:: 2016/05/26 4:13 AM

Resolved:: 2016/02/26 1:41 PM