Camel
  1. Camel
  2. CAMEL-6748

CVE-2013-4330: Skipping Header Evaluation

    Details

    • Estimated Complexity:
      Unknown

      Description

      The current file producer code will evaluate CamelFileName headers as simple expressions if they start with "$simple". There are other ways to achieve this same thing and this functionality is unnecessary.

        Activity

        Christian Müller made changes -
        Fix Version/s 2.9.8 [ 12325025 ]
        Fix Version/s 2.9.7 [ 12324025 ]
        Christian Müller made changes -
        Summary Optimize File Producers by Skipping Header Evaluation CVE-2013-4330: Skipping Header Evaluation
        Claus Ibsen made changes -
        Status Open [ 1 ] Resolved [ 5 ]
        Resolution Fixed [ 1 ]
        Claus Ibsen made changes -
        Fix Version/s 2.10.7 [ 12324667 ]
        Fix Version/s 2.11.2 [ 12324654 ]
        Fix Version/s 2.12.1 [ 12324857 ]
        Fix Version/s 2.13.0 [ 12324786 ]
        Fix Version/s 2.9.7 [ 12324025 ]
        Claus Ibsen made changes -
        Assignee Claus Ibsen [ davsclaus ]
        James Carman made changes -
        Field Original Value New Value
        Attachment CAMEL-6748.patch [ 12603191 ]
        James Carman created issue -

          People

          • Assignee:
            Claus Ibsen
            Reporter:
            James Carman
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development