You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@activemq.apache.org by "Jean-Baptiste Onofré (Jira)" <ji...@apache.org> on 2022/01/31 17:21:00 UTC

[jira] [Updated] (AMQ-8468) CVE-2022-23437: Infinite loop within Apache XercesJ xml parser

     [ https://issues.apache.org/jira/browse/AMQ-8468?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Jean-Baptiste Onofré updated AMQ-8468:
--------------------------------------
    Fix Version/s: 5.17.0

> CVE-2022-23437: Infinite loop within Apache XercesJ xml parser
> --------------------------------------------------------------
>
>                 Key: AMQ-8468
>                 URL: https://issues.apache.org/jira/browse/AMQ-8468
>             Project: ActiveMQ
>          Issue Type: Improvement
>            Reporter: Colm O hEigeartaigh
>            Assignee: Jean-Baptiste Onofré
>            Priority: Major
>             Fix For: 5.17.0, 5.15.16, 5.16.4
>
>
> Please update Xerces to 2.12.2 to fix: CVE-2022-23437: Infinite loop within Apache XercesJ xml parser



--
This message was sent by Atlassian Jira
(v8.20.1#820001)