Julian Sedding created SLING-13263:
--------------------------------------
Summary: Backport fix for CVE-2016-5018
Key: SLING-13263
URL: https://issues.apache.org/jira/browse/SLING-13263
Project: Sling
Issue Type: Bug
Components: Scripting
Affects Versions: Scripting JSP 2.6.2
Reporter: Julian Sedding
Assignee: Julian Sedding
Given that {{org.apache.sling.scripting.jsp}} is a fork of tomact's jasper, it
is affected by CVE-2016-5018. We should backport the fix implemented for
https://bugzilla.redhat.com/show_bug.cgi?id=1390525.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)