[xmlgraphics-website] branch master updated: Add cve's

[ss...@apache.org]

This is an automated email from the ASF dual-hosted git repository.

ssteiner pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/xmlgraphics-website.git


The following commit(s) were added to refs/heads/master by this push:
     new 5cc822f  Add cve's
5cc822f is described below

commit 5cc822feda71fcacfb501880a4e52dd73ab4f795
Author: ssteiner <ss...@apache.org>
AuthorDate: Wed Feb 24 11:47:07 2021 +0000

    Add cve's
---
 content/security.mdtext | 20 +++++++++++++++++++-
 1 file changed, 19 insertions(+), 1 deletion(-)

diff --git a/content/security.mdtext b/content/security.mdtext
index 84a2500..6575339 100644
--- a/content/security.mdtext
+++ b/content/security.mdtext
@@ -8,6 +8,16 @@ The *Apache&trade; XML Graphics Project* has collected its Security related info
 
 ### Apache&trade; Batik Project - Apache Batik Security { #BatikSecurity}
 
+**Fixed in Batik 1.14**
+
+medium: SSRF vulnerability CVE-2020-11987
+
+Issue Public: 2021-02-24
+
+Update Released: 2021-01-20 (Batik 1.14)
+
+Affects: 1.13 and earlier
+
 **Fixed in Batik 1.13**
 
 medium: SSRF vulnerability CVE-2019-17566
@@ -62,7 +72,15 @@ Affects: 2.1 and earlier
 
 ### Apache&trade; XML Graphics Commons Project - Apache XML Graphics Commons Security { #XMLGraphicsCommonsSecurity}
 
-At the time of the most recent update, the [Apache  XML Graphics Commons Project](http://xmlgraphics.apache.org/commons/) has no published vulnerabilities.
+**Fixed in Commons 2.6**
+
+medium: XXE vulnerability CVE-2020-11988
+
+Issue Public: 2021-02-24
+
+Update Released: 2021-01-20 (Commons 2.6)
+
+Affects: 2.4 and earlier
 
 ##Reporting New Security Problems with the Apache XML Graphics Sub Projects { #ReportingSecurityProblems}
 


---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@xmlgraphics.apache.org
For additional commands, e-mail: commits-help@xmlgraphics.apache.org