Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-4299

Backport fix for CVE-2023-46589 in TomeEE9

Details

    • Dependency upgrade
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 9.1.2
    • 9.1.2
    • None

    Description

      This CVE is high severity

      This was fixed with commit b5776d76.

       

      Attachments

        Activity

          rzo1 Richard Zowalla added a comment - If you look into https://github.com/apache/tomee/blob/tomee-9.x/tomee/apache-tomee/src/patch/java/org/apache/catalina/connector/InputBuffer.java#L319 , it was already fixed with 9.1.2 (as part of TOMEE-4285 )

          People

            Unassigned Unassigned
            hdumont34 Hervé Dumont
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: