[NXP-13112] Upgrade to Richfaces 3.3.1.GA-NX9.01 - Nuxeo Issue Tracker

XML

Word

Printable

Details

Type: Task
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 5.6.0-HF26, 5.8
Fix Version/s: 5.6.0-HF27, 5.8.0-HF01, 5.9.1
Component/s: Seam / JSF UI

Tags:
- richfaces
- security

Description

JBoss RichFaces has a known flaw related to deserialization:

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2165

3.3.1.GA-NX10 will the patch that correct the flaw.

Attachments

Issue Links

depends on

VEND-3 Correct JBoss Richfaces CVE-2013-4521 flaw

Resolved

Activity

People

Assignee:

Guillaume Renard

Reporter:

Guillaume Renard

Participants:

Guillaume Renard, Jenkins

Votes:

0 Vote for this issue

Watchers:

2 Start watching this issue

Dates

Created:

2013-11-06 15:42

Updated:

2013-11-13 18:16

Resolved:

2013-11-07 17:46