Back to bug 1328427
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-04-19 11:23:36 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-04-19 11:23:36 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-04-19 11:28:50 UTC | Blocks | 1328429 | |
| Jason Shepherd | 2016-04-29 02:40:48 UTC | Whiteboard | impact=moderate,public=no,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=new,fedora-all/wildfly=affected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected | impact=moderate,public=no,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=affected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected |
| Jason Shepherd | 2016-05-03 22:46:37 UTC | Whiteboard | impact=moderate,public=no,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=affected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected | impact=moderate,public=no,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected |
| Jason Shepherd | 2016-05-03 22:47:30 UTC | Whiteboard | impact=moderate,public=no,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected | impact=moderate,public=20160504,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected |
| Jason Shepherd | 2016-05-03 22:47:33 UTC | Summary | EMBARGOED jackson-dataformat-xml: XmlMapper is vulnerable to XXE attack | jackson-dataformat-xml: XmlMapper is vulnerable to XXE attack |
| Jason Shepherd | 2016-05-03 22:47:35 UTC | Group | security, qe_staff | |
| Jason Shepherd | 2016-05-03 22:47:53 UTC | Depends On | 1332726 | |
| Jason Shepherd | 2016-05-03 22:47:59 UTC | Depends On | 1332727 | |
| Adam Mariš | 2016-05-04 07:56:41 UTC | Summary | jackson-dataformat-xml: XmlMapper is vulnerable to XXE attack | CVE-2016-3720 jackson-dataformat-xml: XmlMapper is vulnerable to XXE attack |
| Alias | CVE-2016-3720 | |||
| Adam Mariš | 2016-06-22 14:01:35 UTC | Fixed In Version | jackson-dataformat-xml 2.7.4 | |
| Adam Mariš | 2016-07-07 09:12:53 UTC | Whiteboard | impact=moderate,public=20160504,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected | impact=moderate,public=20160504,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:N/A:P,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected |
| Brett Cave | 2016-07-13 14:47:03 UTC | CC | brett | |
| mailtoarlo | 2016-08-03 15:15:15 UTC | CC | mailtoarlo | |
| Tatu Saloranta | 2016-08-16 17:59:09 UTC | CC | tsaloranta | |
| Jason Shepherd | 2016-09-23 04:06:15 UTC | Fixed In Version | jackson-dataformat-xml 2.7.4 | 2.7.4 |
| Jason Shepherd | 2016-09-23 04:10:09 UTC | Status | NEW | CLOSED |
| CC | jshepherd | |||
| Resolution | --- | CURRENTRELEASE | ||
| Last Closed | 2016-09-23 00:10:09 UTC | |||
| Tomas Hoger | 2016-09-23 06:53:15 UTC | Fixed In Version | 2.7.4 | jackson-dataformat-xml 2.7.4 |
| Product Security DevOps Team | 2019-09-29 13:47:33 UTC | Whiteboard | impact=moderate,public=20160504,reported=20160415,source=researcher,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:N/A:P,cwe=CWE-611,jboss/wildfly=notaffected,fedora-all/wildfly=notaffected,fedora-all/jberet=affected,fedora-all/jackson-dataformat-xml=affected |
Back to bug 1328427