[jira] [Created] (DERBY-6810) Add regression tests for XXE vulnerability

Bryan Pendleton (JIRA) Sun, 24 May 2015 10:15:06 -0700

Bryan Pendleton created DERBY-6810:
--------------------------------------

             Summary: Add regression tests for XXE vulnerability
                 Key: DERBY-6810
                 URL: https://issues.apache.org/jira/browse/DERBY-6810
             Project: Derby
          Issue Type: Sub-task
            Reporter: Bryan Pendleton



We should add some regression tests demonstrating that
Derby is no longer vulnerable to an XXE assault.

One possibility would be to have a example using a local
file disclosure.

Another possibility would be to have example based on the
well-known "Billion Laughs" denial of service attack.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Created] (DERBY-6810) Add regression tests for XXE vulnerability

Reply via email to