You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shiro.apache.org by "Brian Demers (Jira)" <ji...@apache.org> on 2021/06/07 17:26:00 UTC
[jira] [Closed] (SHIRO-824) how to create an allow list avoid deserialize vulnerability
[ https://issues.apache.org/jira/browse/SHIRO-824?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Brian Demers closed SHIRO-824.
------------------------------
Resolution: Not A Problem
> how to create an allow list avoid deserialize vulnerability
> -----------------------------------------------------------
>
> Key: SHIRO-824
> URL: https://issues.apache.org/jira/browse/SHIRO-824
> Project: Shiro
> Issue Type: Question
> Components: RememberMe
> Affects Versions: 1.7.1
> Reporter: k4n5hao
> Priority: Critical
>
> how to create an allow list (or similar), to avoid deserialize vulnerability like Shiro-550 whith rememberMe? i really check doc and google, icant't find one. thx
--
This message was sent by Atlassian Jira
(v8.3.4#803005)