You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@jackrabbit.apache.org by kw...@apache.org on 2021/06/22 10:01:25 UTC
[jackrabbit-filevault] branch bugfix/JCRVLT-246-sonarcloud-blockers
updated (91e2184 -> d49f68a)
This is an automated email from the ASF dual-hosted git repository.
kwin pushed a change to branch bugfix/JCRVLT-246-sonarcloud-blockers
in repository https://gitbox.apache.org/repos/asf/jackrabbit-filevault.git.
from 91e2184 fix major bugs
add d49f68a fix blocker vulnerabilities by disabling access to external entities during XML parsing
No new revisions were added by this update.
Summary of changes:
.../apache/jackrabbit/vault/fs/impl/io/DocViewAnalyzer.java | 5 ++++-
.../jackrabbit/vault/fs/impl/io/FileArtifactHandler.java | 3 +++
.../jackrabbit/vault/fs/impl/io/GenericArtifactHandler.java | 3 +++
.../java/org/apache/jackrabbit/vault/fs/io/DocViewFormat.java | 11 ++++++++---
.../vault/validation/spi/impl/AdvancedFilterValidator.java | 3 ++-
.../validation/spi/impl/AdvancedFilterValidatorFactory.java | 6 ++----
6 files changed, 22 insertions(+), 9 deletions(-)