tenant header injection security vulnerability (EDGCOMMON-47).

Description

Upgrade edge-common from 4.2.0 to 4.3.0 fixing a tenant header injection security vulnerability (EDGCOMMON-47).

Environment

None

Potential Workaround

None

Linked issues

Checklist

hide

TestRail: Results

Activity

Show:

Julian Ladisch June 10, 2022 at 2:12 PM

https://github.com/folio-org/edge-oai-pmh/blob/master/pom.xml has edge-common 4.3.0 since yesterday, thanks!

Aliaksei Harbuz June 10, 2022 at 1:51 PM

The version of edge-common was upgraded to 4.3.0 in scope of .

Done

Details
Assignee
Unassigned
Reporter
Julian Ladisch
Labels
securitysecurity-reviewed
Priority
P3
Story Points
0
Sprint
None
Development Team
Firebird
Fix versions
2.5.0
Release
Morning Glory (R2 2022)
TestRail: Cases
Open TestRail: Cases
TestRail: Runs
Open TestRail: Runs

Created June 7, 2022 at 9:14 PM

Updated July 6, 2022 at 2:49 PM

Resolved June 10, 2022 at 2:12 PM

Configure

TestRail: Cases

TestRail: Runs

tenant header injection security vulnerability (EDGCOMMON-47).

Description

Environment

Potential Workaround

Linked issues

blocks

is blocked by

relates to

Checklist

TestRail: Results

Activity

Julian Ladisch June 10, 2022 at 2:12 PM

Aliaksei Harbuz June 10, 2022 at 1:51 PM

DetailsAssigneeUnassignedUnassignedReporterJulian LadischJulian LadischLabelssecuritysecurity-reviewedPriorityP3Story Points0SprintNone+1Development TeamFirebirdFix versions2.5.0ReleaseMorning Glory (R2 2022)TestRail: CasesOpen TestRail: CasesTestRail: RunsOpen TestRail: Runs

Details

Assignee

Reporter

Labels

Priority

Story Points

Sprint

Development Team

Fix versions

Release

TestRail: Cases

TestRail: Runs

Details
Assignee
Unassigned
Reporter
Julian Ladisch
Labels
securitysecurity-reviewed
Priority
P3
Story Points
0
Sprint
None
Development Team
Firebird
Fix versions
2.5.0
Release
Morning Glory (R2 2022)
TestRail: Cases
Open TestRail: Cases
TestRail: Runs
Open TestRail: Runs