Uploaded image for project: 'Batik'
  1. Batik
  2. BATIK-1345

Restrict what java classes can be run thru rhino

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.16
    • None
    • None

    Description

      The user should not be able to run java api's such as:
      Runtime.getRuntime().exec("xxx");

      CVE-2022-42890

      Attachments

        Issue Links

          Activity

            People

              ssteiner Simon Steiner
              ssteiner Simon Steiner
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: