Uploaded image for project: 'Axis2'
  1. Axis2
  2. AXIS2-5945

CVE-2014-0107 in xalan

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.7.9
    • Fix Version/s: 1.7.10
    • Component/s: deployment
    • Labels:
      None

      Description

      BlackDuck is flagging Axis2's transitive dependency to xalan 2.7.0 as a major vulnerability. See https://nvd.nist.gov/vuln/detail/CVE-2014-0107 

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              rvadakkan Ranjit Vadakkan

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment