[
https://issues.apache.org/jira/browse/DERBY-6810?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Bryan Pendleton updated DERBY-6810:
-----------------------------------
Attachment: billionLaughs.diff
I tried to demonstrate the XXE Vulnerability using the well-known
"Billion Laughs" denial of service attack; my attempt is attached
as 'billionLaughs.diff'.
When I run this with the current Derby trunk, the result I see is:
org.xml.sax.SAXParseException; lineNumber: 1; columnNumber: 1; The parser has
encountered more than "64,000" entity expansions in this document; this is the
limit imposed by the application.
at com.sun.org.apache.xerces.internal.util.ErrorHandlerWrapper.createSAX
ParseException(ErrorHandlerWrapper.java:198)
I'm not sure if this is a demonstration of the DERBY-6807 vulnerability or not.
> Add regression tests for XXE vulnerability
> ------------------------------------------
>
> Key: DERBY-6810
> URL: https://issues.apache.org/jira/browse/DERBY-6810
> Project: Derby
> Issue Type: Sub-task
> Reporter: Bryan Pendleton
> Assignee: Abhinav Gupta
> Attachments: billionLaughs.diff
>
>
> We should add some regression tests demonstrating that
> Derby is no longer vulnerable to an XXE assault.
> One possibility would be to have a example using a local
> file disclosure.
> Another possibility would be to have example based on the
> well-known "Billion Laughs" denial of service attack.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
