You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Donald Woods (JIRA)" <ji...@apache.org> on 2008/08/26 22:16:44 UTC
[jira] Closed: (GERONIMO-4262) Include patched build of AMQ 4.1.2
to resolve AMQ-1272 security exposure
[ https://issues.apache.org/jira/browse/GERONIMO-4262?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Donald Woods closed GERONIMO-4262.
----------------------------------
Resolution: Fixed
applied to branches/2.0 (2.0.3-SNAPSHOT)
> Include patched build of AMQ 4.1.2 to resolve AMQ-1272 security exposure
> ------------------------------------------------------------------------
>
> Key: GERONIMO-4262
> URL: https://issues.apache.org/jira/browse/GERONIMO-4262
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: ActiveMQ
> Affects Versions: 1.1.1, 2.0.2, 2.1.2, 2.2
> Reporter: Donald Woods
> Assignee: Donald Woods
> Priority: Critical
> Fix For: 2.0.3, 2.1.3, 2.2
>
> Attachments: 4.1.2-G647819.README.TXT, AMQ1272-stomp-auth-v412.patch
>
>
> Need to include a patched activemq-core jarfile to fix the following security exposure that was fixed in AMQ 5.1.0 -
> https://issues.apache.org/activemq/browse/AMQ-1272
> Stomp protocol does not correctly check authentication (security hole)
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.