Issue Details (XML | Word | Printable)

Key: GERONIMO-4597
Type: Bug Bug
Status: Resolved Resolved
Resolution: Fixed
Priority: Major Major
Assignee: Joe Bohn
Reporter: Joe Bohn
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Geronimo

Validate Web Admin Console input - address admin console security vulnerabilities

Created: 20/Mar/09 01:37 PM   Updated: 05/May/09 01:33 AM
Component/s: console
Affects Version/s: 2.1, 2.1.1, 2.1.2, 2.1.3
Fix Version/s: 2.1.4, 2.1.5, 2.2
Security Level: public (Regular issues)

Time Tracking:
Not Specified

File Attachments:
  File Name Date Attached Attached By Size
Text File Licensed for inclusion in ASF works G4597_branch_20.patch 2009-05-05 01:33 AM Shawn Jiang 72 kB

Resolution Date: 25/Mar/09 03:20 PM


 Description  « Hide
This JIRA addresses the following security vulnerabilities in the web admin console:

CVE-2008-5518: Apache Geronimo web administration console directory traversal vulnerabilities.
A vulnerability was found in several portlets including Services/Repository, Embedded DB/DB Manager, and Security/Keystores when running the Apache Geronimo server on Windows. This issue may allow a remote attacker to upload any file in any directory. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) for responsibly reporting this issue and assisting us with validating our fixes.

CVE-2009-0038: Apache Geronimo web administration console XSS vulnerabilities
Various linked and stored cross-site scripting (XSS) vulnerabilities were found in the Apache Geronimo administrative console and related utilities. Using this vulnerability an attacker can steal an administrator's cookie and then authenticate as administrator or perform certain administrative actions. For example, a user can inject XSS in some URLs or in several input fields in various portlets. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) and Marc Schoenefeld (Red Hat Security Response Team) for responsibly reporting this issue and assisting us with validating our fixes.

CVE-2009-0039: Apache Geronimo web administration console XSRF vulnerabilities
Various cross-site request forgery (XSRF or CSRF) vulnerabilities were identified in the Apache Geronimo web administration console. Exploiting these issues may allow a remote attacker to perform certain administrative actions, e.g. change web administration password, upload applications, etc... using predictable URL requests once the user has authenticated and obtained a valid session with the server. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) for responsibly reporting this issue and assisting us with validating our fixes.

It corrects the issues with the addition of directory checks and a servlet filter to check for XSS and XSRF vulnerabilities

 All   Comments   Work Log   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
Repository Revision Date User Message
ASF #758252 Wed Mar 25 13:39:24 UTC 2009 jbohn GERONIMO-4597 Validate Web Admin Console input - fixes for CVE-2008-5518, CVE-2009-0038, and CVE-2009-0039
Files Changed
MODIFY /geronimo/server/branches/2.1.4/plugins/ca-helper/geronimo-ca-helper/pom.xml
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSXSRFFilter.java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/resources
MODIFY /geronimo/server/branches/2.1.4/plugins/console/console-portal-driver/pom.xml
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/NOTICE.txt
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache
ADD /geronimo/server/branches/2.1.4/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/util/InputUtils.java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/FilterResponseWrapper.java
MODIFY /geronimo/server/branches/2.1.4/plugins/ca-helper/geronimo-ca-helper/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/branches/2.1.4/plugins/system-database/sysdb-portlets/src/main/webapp/WEB-INF/view/internaldb/runSQLNormal.jsp
MODIFY /geronimo/server/branches/2.1.4/plugins/console/console-portal-driver/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/pom.xml
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/LICENSE.txt
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditView.jsp
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/resources/XSRF.js
MODIFY /geronimo/server/branches/2.1.4/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/keystore/createKeystore.jsp
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/branches/2.1.4/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/repository/normal.jsp
MODIFY /geronimo/server/branches/2.1.4/plugins/welcome/geronimo-welcome/pom.xml
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo
MODIFY /geronimo/server/branches/2.1.4/plugins/console/pom.xml
MODIFY /geronimo/server/branches/2.1.4/framework/modules/geronimo-security/src/main/java/org/apache/geronimo/security/keystore/FileKeystoreManager.java
MODIFY /geronimo/server/branches/2.1.4/plugins/system-database/sysdb-portlets/src/main/java/org/apache/geronimo/console/internaldb/RunSQLHelper.java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSRFHandler.java
MODIFY /geronimo/server/branches/2.1.4/plugins/welcome/geronimo-welcome/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/branches/2.1.4/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/repository/AbstractRepository.java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditGraph.jsp
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddView.jsp
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/pom.xml
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSHandler.java
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/java/org/apache/geronimo/monitoring/console/MonitoringPortlet.java
MODIFY /geronimo/server/branches/2.1.4/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddGraph.jsp
ADD /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/ResponseOutputStream.java

Repository Revision Date User Message
ASF #758274 Wed Mar 25 14:40:27 UTC 2009 jbohn merge rev. 758252 from branches/2.1.4 - GERONIMO-4597 Validate Web Admin Console input - fixes for CVE-2008-5518, CVE-2009-0038, and CVE-2009-0039
Files Changed
ADD /geronimo/server/branches/2.1/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/util/InputUtils.java (from /geronimo/server/branches/2.1.4/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/util/InputUtils.java)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache)
MODIFY /geronimo/server/branches/2.1/plugins/system-database/sysdb-portlets/src/main/webapp/WEB-INF/view/internaldb/runSQLNormal.jsp
MODIFY /geronimo/server/branches/2.1/plugins/ca-helper/geronimo-ca-helper/pom.xml
MODIFY /geronimo/server/branches/2.1/plugins/console/console-portal-driver/src/main/webapp/WEB-INF/web.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSXSRFFilter.java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSXSRFFilter.java)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java)
ADD /geronimo/server/branches/2.1/plugins/console/console-filter (from /geronimo/server/branches/2.1.4/plugins/console/console-filter)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/FilterResponseWrapper.java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/FilterResponseWrapper.java)
MODIFY /geronimo/server/branches/2.1/plugins/ca-helper/geronimo-ca-helper/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/pom.xml
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditView.jsp
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/resources/XSRF.js (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/resources/XSRF.js)
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/web.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter)
MODIFY /geronimo/server/branches/2.1/plugins/console/pom.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/LICENSE.txt (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/LICENSE.txt)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src)
MODIFY /geronimo/server/branches/2.1/plugins/system-database/sysdb-portlets/src/main/java/org/apache/geronimo/console/internaldb/RunSQLHelper.java
MODIFY /geronimo/server/branches/2.1/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/repository/AbstractRepository.java
MODIFY /geronimo/server/branches/2.1/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/keystore/createKeystore.jsp
MODIFY /geronimo/server/branches/2.1/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/repository/normal.jsp
MODIFY /geronimo/server/branches/2.1/plugins/welcome/geronimo-welcome/pom.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSHandler.java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSHandler.java)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main)
MODIFY /geronimo/server/branches/2.1/framework/modules/geronimo-security/src/main/java/org/apache/geronimo/security/keystore/FileKeystoreManager.java
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSRFHandler.java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSRFHandler.java)
MODIFY /geronimo/server/branches/2.1/plugins/welcome/geronimo-welcome/src/main/webapp/WEB-INF/web.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console)
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditGraph.jsp
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/pom.xml (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/pom.xml)
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddView.jsp
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/java/org/apache/geronimo/monitoring/console/MonitoringPortlet.java
MODIFY /geronimo/server/branches/2.1/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddGraph.jsp
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/ResponseOutputStream.java (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/ResponseOutputStream.java)
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/src/main/resources (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/src/main/resources)
MODIFY /geronimo/server/branches/2.1/plugins/console/console-portal-driver/pom.xml
REPLACE /geronimo/server/branches/2.1/plugins/console/console-filter/NOTICE.txt (from /geronimo/server/branches/2.1.4/plugins/console/console-filter/NOTICE.txt)

Repository Revision Date User Message
ASF #758297 Wed Mar 25 15:11:16 UTC 2009 jbohn GERONIMO-4597 Validate Web Admin Console input - fixes for CVE-2008-5518, CVE-2009-0038, and CVE-2009-0039
Files Changed
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/pom.xml
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditView.jsp
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/web.xml
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/resources/XSRF.js
MODIFY /geronimo/server/trunk/plugins/ca-helper/geronimo-ca-helper/pom.xml
MODIFY /geronimo/server/trunk/plugins/console/pom.xml
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSXSRFFilter.java
ADD /geronimo/server/trunk/plugins/console/console-filter
MODIFY /geronimo/server/trunk/plugins/system-database/sysdb-portlets/src/main/java/org/apache/geronimo/console/internaldb/RunSQLHelper.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/FilterResponseWrapper.java
MODIFY /geronimo/server/trunk/plugins/ca-helper/geronimo-ca-helper/src/main/webapp/WEB-INF/web.xml
MODIFY /geronimo/server/trunk/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/repository/AbstractRepository.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSSHandler.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org
ADD /geronimo/server/trunk/plugins/console/console-filter/LICENSE.txt
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddGraph.jsp
ADD /geronimo/server/trunk/plugins/console/console-filter/src
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/java/org/apache/geronimo/monitoring/console/MonitoringPortlet.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/ResponseOutputStream.java
MODIFY /geronimo/server/trunk/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/keystore/createKeystore.jsp
MODIFY /geronimo/server/trunk/plugins/console/console-base-portlets/src/main/webapp/WEB-INF/view/repository/normal.jsp
MODIFY /geronimo/server/trunk/plugins/welcome/geronimo-welcome/pom.xml
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo
MODIFY /geronimo/server/trunk/framework/modules/geronimo-security/src/main/java/org/apache/geronimo/security/keystore/FileKeystoreManager.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/resources
MODIFY /geronimo/server/trunk/plugins/console/console-portal-driver/pom.xml
ADD /geronimo/server/trunk/plugins/console/console-filter/NOTICE.txt
ADD /geronimo/server/trunk/framework/modules/geronimo-kernel/src/main/java/org/apache/geronimo/kernel/util/InputUtils.java
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console/filter/XSRFHandler.java
MODIFY /geronimo/server/trunk/plugins/welcome/geronimo-welcome/src/main/webapp/WEB-INF/web.xml
ADD /geronimo/server/trunk/plugins/console/console-filter/src/main/java/org/apache/geronimo/console
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringEditGraph.jsp
MODIFY /geronimo/server/trunk/plugins/system-database/sysdb-portlets/src/main/webapp/WEB-INF/view/internaldb/runSQLNormal.jsp
MODIFY /geronimo/server/trunk/plugins/monitoring/mconsole-war/src/main/webapp/WEB-INF/view/monitoringAddView.jsp
ADD /geronimo/server/trunk/plugins/console/console-filter/pom.xml
MODIFY /geronimo/server/trunk/plugins/console/console-portal-driver/src/main/webapp/WEB-INF/web.xml

[ Permlink | « Hide ]
Joe Bohn added a comment - 25/Mar/09 03:20 PM
checked into branches/2.1.4 with rev. 758252,
branches/2.1 with rev. 758274,
and trunk with rev. 758297

Joe Bohn made changes - 25/Mar/09 03:20 PM
Field Original Value New Value
Resolution Fixed [ 1 ]
Fix Version/s 2.1.5 [ 12313729 ]
Status Open [ 1 ] Resolved [ 5 ]
Joe Bohn made changes - 31/Mar/09 03:39 PM
Description This JIRA addresses the following security vulnerabilities in the web admin console:

CVE-2008-5518: Apache Geronimo web administration console directory traversal vulnerabilities.
A vulnerability was found in several portlets including Services/Repository, Embedded DB/DB Manager, and Security/Keystores when running the Apache Geronimo server on Windows. This issue may allow a remote attacker to upload any file in any directory. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) for responsibly reporting this issue and assisting us with validating our fixes.

CVE-2009-0038: Apache Geronimo web administration console XSS vulnerabilities
Various linked and stored cross-site scripting (XSS) vulnerabilities were found in the Apache Geronimo administrative console and related utilities. Using this vulnerability an attacker can steal an administrator's cookie and then authenticate as administrator or perform certain administrative actions. For example, a user can inject XSS in some URLs or in several input fields in various portlets. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) and Marc Schoenefeld (Red Hat Security Response Team) for responsibly reporting this issue and assisting us with validating our fixes.


CVE-2009-0039: Apache Geronimo web administration console XSRF vulnerabilities
Various cross-site request forgery (XSRF or CSRF) vulnerabilities were identified in the Apache Geronimo web administration console. Exploiting these issues may allow a remote attacker to perform certain administrative actions, e.g. change web administration password, upload applications, etc... using predictable URL requests once the user has authenticated and obtained a valid session with the server. This affects all full JavaEE Geronimo assemblies or other distributions which include the administration web console up to and including Apache Geronimo 2.1.3. An alternative workaround (if you choose to not upgrade to Apache Geronimo 2.1.4) would be to stop or undeploy the administration web console application in the server.
Credit: The Apache Geronimo project would like to thank Digital Security Research Group (dsecrg.com) for responsibly reporting this issue and assisting us with validating our fixes.



It corrects the issues with the addition of directory checks and a servlet filter to check for XSS and XSRF vulnerabilities
Summary Validate Web Admin Console input Validate Web Admin Console input - address admin console security vulnerabilities
[ Permlink | « Hide ]
Shawn Jiang added a comment - 05/May/09 01:33 AM
Based on the fixes on trunk and 2.1. Here is the patch for 2.0 branch

Shawn Jiang made changes - 05/May/09 01:33 AM
Attachment G4597_branch_20.patch [ 12407204 ]

Powered by a free Atlassian JIRA open source license for Apache Software Foundation. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators