You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@nifi.apache.org by th...@apache.org on 2020/01/24 02:54:16 UTC
[nifi-site] branch master updated: Updated wording for security.html
This is an automated email from the ASF dual-hosted git repository.
thenatog pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi-site.git
The following commit(s) were added to refs/heads/master by this push:
new 8949136 Updated wording for security.html
8949136 is described below
commit 89491363fb1cae6ea948352e177ba40ac9018779
Author: Nathan Gough <th...@gmail.com>
AuthorDate: Thu Jan 23 21:53:53 2020 -0500
Updated wording for security.html
---
src/pages/html/security.hbs | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/pages/html/security.hbs b/src/pages/html/security.hbs
index 3037ff3..757fac2 100644
--- a/src/pages/html/security.hbs
+++ b/src/pages/html/security.hbs
@@ -66,7 +66,7 @@ title: Apache NiFi Security Reports
</ul>
</p>
<p>Description: The sensitive parameter parser would log parsed values for debugging purposes. If the parameter was sensitive, it would be logged in plaintext. </p>
- <p>Mitigation: Removed debug logging from the class. Users running a prior 1.x release should upgrade to the latest release. </p>
+ <p>Mitigation: Removed debug logging from the class. Users running the 1.10.0 release should upgrade to the latest release. </p>
<p>Credit: This issue was discovered by Andy LoPresto. </p>
<p>CVE Link: <a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1928" target="_blank">Mitre Database: CVE-2020-1928</a></p>
<p>NiFi Jira: <a href="https://issues.apache.org/jira/browse/NIFI-6948" target="_blank">NIFI-6948</a></p>