Julian Sedding created SLING-13263:
--------------------------------------

             Summary: Backport fix for CVE-2016-5018
                 Key: SLING-13263
                 URL: https://issues.apache.org/jira/browse/SLING-13263
             Project: Sling
          Issue Type: Bug
          Components: Scripting
    Affects Versions: Scripting JSP 2.6.2
            Reporter: Julian Sedding
            Assignee: Julian Sedding


Given that {{org.apache.sling.scripting.jsp}} is a fork of tomact's jasper, it 
is affected by CVE-2016-5018. We should backport the fix implemented for 
https://bugzilla.redhat.com/show_bug.cgi?id=1390525.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to