Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-13440

CVE-2018-14371 jsf-impl: mojarra: Path traversal in ResourceManager.java:getLocalePrefix() via the loc parameter

    Details

      Description

      CVE-2018-14371 mojarra: Path traversal in ResourceManager.java:getLocalePrefix() via the loc parameter
      https://bugzilla.redhat.com/show_bug.cgi?id=1607709

      This was already fixed upstream:
      https://github.com/eclipse-ee4j/mojarra/commit/1b434748d9239f42eae8aa7d37d7a0930c061e24

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  fjuma Farah Juma
                  Reporter:
                  fjuma Farah Juma
                  Involved:
                  Alessio Soldano, Anne-Louise Tangring, Anton Boyko, Bartosz Baranowski, Brad Maxwell, Brian Stansberry, Carlo de Wolf, Chess Hazlett, Daniel Kreling, Darran Lofthouse, Ingo Weiss, James Perkins, Jimmy Wilson, Jonathan Christison, Ken Wills, Kunjan Rathod, Lin Gao, Martin Svehla, Miroslav Sochurek, Neil Wallace, Panagiotis Sotiropoulos, Paramvir Jindal, Peter Mackay, Radovan Stancel, Roberto Oliveira, Rostislav Svoboda, Stefano Maestri, Ted Won, Thomas Jenkinson, Vladimir Dosoudil
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Due:
                    Created:
                    Updated:
                    Resolved: