This is an automated email from the ASF dual-hosted git repository.

Croway pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel-website.git

commit 2ae854d8bc611c65615e74d7dbb6181d49f0726b
Author: Croway <[email protected]>
AuthorDate: Mon Jul 6 09:40:25 2026 +0200

    Added CVE-2026-49042
---
 content/security/CVE-2026-49042.md      | 17 +++++++++++++++
 content/security/CVE-2026-49042.txt.asc | 37 +++++++++++++++++++++++++++++++++
 2 files changed, 54 insertions(+)

diff --git a/content/security/CVE-2026-49042.md 
b/content/security/CVE-2026-49042.md
new file mode 100644
index 00000000..36d4dd29
--- /dev/null
+++ b/content/security/CVE-2026-49042.md
@@ -0,0 +1,17 @@
+---
+title: "Apache Camel Security Advisory - CVE-2026-49042"
+date: 2026-07-03T10:00:00+02:00
+url: /security/CVE-2026-49042.html
+draft: false
+type: security-advisory
+cve: CVE-2026-49042
+severity: MEDIUM
+summary: "Camel-Langchain4j-Tools: Tool argument headers are not filtered 
against declared parameters, allowing an LLM to inject arbitrary Exchange 
headers via tool call arguments"
+description: "Improper Input Validation vulnerability in Apache Camel. The 
camel-langchain4j-tools, camel-langchain4j-agent and camel-spring-ai-tools 
producers set all JSON field names returned by the LLM in a tool-call response 
as Exchange message headers without filtering them against the tool's declared 
parameter schema. An attacker who can influence the LLM output (for example via 
prompt injection) can include arbitrary field names in the tool arguments JSON 
- including Camel-interna [...]
+mitigation: "Users are recommended to upgrade to version 4.21.0, which fixes 
the issue. If users are on the 4.18.x releases stream, then they are suggested 
to upgrade to 4.18.3. After upgrading, only tool argument fields that match a 
declared parameter.<name> in the tool specification are set as Exchange 
headers. Tools defined without parameter declarations will have zero argument 
headers set from LLM tool calls - this is a breaking change for routes that 
rely on implicit argument passth [...]
+credit: "This issue was discovered by Yu Bao from PayPal"
+affected: "From 4.8.0 before 4.18.3, from 4.19.0 before 4.21.0."
+fixed: 4.18.3 and 4.21.0
+---
+
+The JIRA ticket: https://issues.apache.org/jira/browse/CAMEL-23621 refers to 
the various commits that resolved the issue, and has more details. The fix was 
merged on main in https://github.com/apache/camel/pull/23535 (commit 
7e65891f77aee72dc24c8099e9ba48a93962042b) and backported to camel-4.18.x in 
https://github.com/apache/camel/pull/23551 (commit 
5d0028f6bc7a70556dc1d408b1b6cadb59e1842d). The fix adds parameter-schema 
filtering to three components: LangChain4jToolsProducer and LangCha [...]
diff --git a/content/security/CVE-2026-49042.txt.asc 
b/content/security/CVE-2026-49042.txt.asc
new file mode 100644
index 00000000..72a45424
--- /dev/null
+++ b/content/security/CVE-2026-49042.txt.asc
@@ -0,0 +1,37 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA512
+
+- ---
+title: "Apache Camel Security Advisory - CVE-2026-49042"
+date: 2026-07-03T10:00:00+02:00
+url: /security/CVE-2026-49042.html
+draft: false
+type: security-advisory
+cve: CVE-2026-49042
+severity: MEDIUM
+summary: "Camel-Langchain4j-Tools: Tool argument headers are not filtered 
against declared parameters, allowing an LLM to inject arbitrary Exchange 
headers via tool call arguments"
+description: "Improper Input Validation vulnerability in Apache Camel. The 
camel-langchain4j-tools, camel-langchain4j-agent and camel-spring-ai-tools 
producers set all JSON field names returned by the LLM in a tool-call response 
as Exchange message headers without filtering them against the tool's declared 
parameter schema. An attacker who can influence the LLM output (for example via 
prompt injection) can include arbitrary field names in the tool arguments JSON 
- including Camel-interna [...]
+mitigation: "Users are recommended to upgrade to version 4.21.0, which fixes 
the issue. If users are on the 4.18.x releases stream, then they are suggested 
to upgrade to 4.18.3. After upgrading, only tool argument fields that match a 
declared parameter.<name> in the tool specification are set as Exchange 
headers. Tools defined without parameter declarations will have zero argument 
headers set from LLM tool calls - this is a breaking change for routes that 
rely on implicit argument passth [...]
+credit: "This issue was discovered by Yu Bao from PayPal"
+affected: "From 4.8.0 before 4.18.3, from 4.19.0 before 4.21.0."
+fixed: 4.18.3 and 4.21.0
+- ---
+
+The JIRA ticket: https://issues.apache.org/jira/browse/CAMEL-23621 refers to 
the various commits that resolved the issue, and has more details. The fix was 
merged on main in https://github.com/apache/camel/pull/23535 (commit 
7e65891f77aee72dc24c8099e9ba48a93962042b) and backported to camel-4.18.x in 
https://github.com/apache/camel/pull/23551 (commit 
5d0028f6bc7a70556dc1d408b1b6cadb59e1842d). The fix adds parameter-schema 
filtering to three components: LangChain4jToolsProducer and LangCha [...]
+-----BEGIN PGP SIGNATURE-----
+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+=Y8Uo
+-----END PGP SIGNATURE-----

Reply via email to