You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@sling.apache.org by Radu Cotescu <ra...@apache.org> on 2023/03/20 12:11:45 UTC

CVE-2023-26513: Apache Sling Resource Merger: Requests to certain paths managed by the Apache Sling Resource Merger can lead to DoS

Description:

Excessive Iteration vulnerability in Apache Software Foundation Apache Sling Resource Merger.This issue affects Apache Sling Resource Merger: from 1.2.0 before 1.4.2.

This issue is being tracked as SLING-11776 

Credit:

 Alex Collignon (reporter)

References:

https://sling.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-26513
https://issues.apache.org/jira/browse/SLING-11776