[KNOX-1194] AdminUI should use safe versions of YAML load and dump methods. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.1.0
Fix Version/s: 1.1.0
Component/s: AdminUI
Labels:
None

Description

The AdminUI currently uses js-yaml methods load and dump. It should be using safeLoad and safeDump to limit the risks associated with handling untrusted YAML.

Attachments

Activity

People

Assignee:: Philip Zampino

Reporter:: Philip Zampino

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 24/Feb/18 03:33

Updated:: 28/Mar/19 14:05

Resolved:: 24/Feb/18 03:39