oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

New security advisory CVE-2017-12624 released for Apache CXF

From: Colm O hEigeartaigh <coheigea () apache org>
Date: Tue, 14 Nov 2017 13:32:50 +0000
A new security advisory has been released for Apache CXF, that is fixed in
the recent 3.2.1 and 3.1.14 releases:

CVE-2017-12624: Apache CXF web services that process attachments are
vulnerable to Denial of Service (DoS) attacks

The full text of the advisory is available here:

http://cxf.apache.org/security-advisories.data/CVE-2017-12624.txt.asc

Colm.


-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com
Previous By Date Next
Previous By Thread Next

Current thread: