https://bugzilla.redhat.com/show_bug.cgi?id=1201026
Bug ID: 1201026
Summary: enable scala-extensions
Product: Fedora
Version: rawhide
Component: mustache-java
Assignee: puntogil(a)libero.it
Reporter: puntogil(a)libero.it
QA Contact: extras-qa(a)fedoraproject.org
CC: java-sig-commits(a)lists.fedoraproject.org,
mizdebsk(a)redhat.com, puntogil(a)libero.it
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=V3SbJBHivM&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1222573
Bug ID: 1222573
Summary: CVE-2014-7810 Tomcat/JbossWeb: security manager bypass
via EL expressions
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: mprpic(a)redhat.com
CC: aileenc(a)redhat.com, alazarot(a)redhat.com,
alee(a)redhat.com, asantos(a)redhat.com,
aszczucz(a)redhat.com, bdawidow(a)redhat.com,
bgollahe(a)redhat.com, ccoleman(a)redhat.com,
cdewolf(a)redhat.com, chazlett(a)redhat.com,
dandread(a)redhat.com, darran.lofthouse(a)redhat.com,
dknox(a)redhat.com, dmcphers(a)redhat.com,
epp-bugs(a)redhat.com, etirelli(a)redhat.com,
felias(a)redhat.com, gvarsami(a)redhat.com,
hchiorea(a)redhat.com, hfnukal(a)redhat.com,
ivan.afonichev(a)gmail.com, jason.greene(a)redhat.com,
java-sig-commits(a)lists.fedoraproject.org,
jawilson(a)redhat.com, jboss-set(a)redhat.com,
jbpapp-maint(a)redhat.com, jclere(a)redhat.com,
jcoleman(a)redhat.com, jdg-bugs(a)redhat.com,
jdoyle(a)redhat.com, jialiu(a)redhat.com,
joelsmith(a)redhat.com, jokerman(a)redhat.com,
jolee(a)redhat.com, jpallich(a)redhat.com,
kanderso(a)redhat.com, kconner(a)redhat.com,
krzysztof.daniel(a)gmail.com, kseifried(a)redhat.com,
ldimaggi(a)redhat.com, lgao(a)redhat.com,
lkocman(a)redhat.com, lmeyer(a)redhat.com,
lpetrovi(a)redhat.com, mbaluch(a)redhat.com,
me(a)coolsvap.net, mfranc(a)redhat.com,
mmccomas(a)redhat.com, mweiler(a)redhat.com,
mwinkler(a)redhat.com, myarboro(a)redhat.com,
nwallace(a)redhat.com, pavelp(a)redhat.com,
pgier(a)redhat.com, pslavice(a)redhat.com,
rhq-maint(a)redhat.com, rrajasek(a)redhat.com,
rsvoboda(a)redhat.com, rwagner(a)redhat.com,
rzhang(a)redhat.com,
soa-p-jira(a)post-office.corp.redhat.com,
spinder(a)redhat.com, tcunning(a)redhat.com,
theute(a)redhat.com, tkirby(a)redhat.com,
tmlcoch(a)redhat.com, ttarrant(a)redhat.com,
twalsh(a)redhat.com, vhalbert(a)redhat.com,
vtunka(a)redhat.com, weli(a)redhat.com
It was found that the expression language resolver evaluated expressions within
a privileged code section. A malicious web application could use this flaw to
bypass security manager protections.
Upstream patches:
http://svn.apache.org/viewvc?view=revision&revision=1644019http://svn.apache.org/viewvc?view=revision&revision=1645644
External References:
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.44http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.59http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.17
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Ve028TaWS0&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1217904
Bug ID: 1217904
Summary: pep8/pylint fixes
Product: Fedora
Version: rawhide
Component: fedora-review-plugin-java
Assignee: msimacek(a)redhat.com
Reporter: leamas.alec(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: java-sig-commits(a)lists.fedoraproject.org,
mizdebsk(a)redhat.com, msimacek(a)redhat.com,
msrb(a)redhat.com
Created attachment 1021171
--> https://bugzilla.redhat.com/attachment.cgi?id=1021171&action=edit
pep8 patch
Description of problem:
Last update introduced some pep8 errors.
The overall problem is how to handle the pylint.conf and pep8.conf which rare
part of the main fedora-review package. Perhaps this package (the plugin)
should use them as available ni fedora-review.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Ee1TtvOBiB&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1210186
Bug ID: 1210186
Summary: plexus-active-collections should be retired
Product: Fedora
Version: rawhide
Component: plexus-active-collections
Assignee: yyang(a)redhat.com
Reporter: mizdebsk(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: java-sig-commits(a)lists.fedoraproject.org,
mizdebsk(a)redhat.com, yyang(a)redhat.com
I believe that plexus-active-collections package should be retired in Fedora
rawhide. Reason: project has been retired upstream. I've checked and nothing
requires or bulid-requires this package.
Package owner: Can you retire the package in f23? Or if you prefer I can retire
it - in this case just orphan the package and let me know and I will retire it
myself.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=A3oSlUjMY9&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1110024
Bug ID: 1110024
Summary: Provide packages for EPEL6 and EPEL7
Product: Fedora
Version: rawhide
Component: qpid-proton-java
Assignee: puntogil(a)libero.it
Reporter: dpierce(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: dpierce(a)redhat.com,
java-sig-commits(a)lists.fedoraproject.org,
puntogil(a)libero.it
Currently the qpid-proton-java package cannot be built for either EPEL6 or
EPEL7 due to missing dependencies. This BZ is to track those missing
dependencies.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=qtkTV37cBl&a=cc_unsubscribe
https://bugzilla.redhat.com/show_bug.cgi?id=1166658
Bug ID: 1166658
Summary: xbean: Enable xbean-blueprint module
Product: Fedora
Version: rawhide
Component: xbean
Keywords: FutureFeature
Assignee: mizdebsk(a)redhat.com
Reporter: mizdebsk(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: java-sig-commits(a)lists.fedoraproject.org,
krzysztof.daniel(a)gmail.com, mizdebsk(a)redhat.com,
msimacek(a)redhat.com, msrb(a)redhat.com
Depends On: 1166655
Description of problem:
xbean-blueprint is currently disabled due to dependency on newer version of
aries-blueprint (>= 1.0.0).
Version-Release number of selected component (if applicable):
4.1-1
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1166655
[Bug 1166655] aries-blueprint: Update to latest upstream version
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=ztgLsAFA0o&a=cc_unsubscribe