elharo commented on code in PR #9: URL: https://github.com/apache/xerces-j/pull/9#discussion_r2105814835
########## docs/security.xml: ########## @@ -31,5 +31,14 @@ If you think you have found a security issue in Apache Xerces, please follow the Results from source code security analyzers are not accepted without additional analysis showing that the problem indeed violates the project's security model, as such tools commonly produce many false positives. </p> +</s2> +<s2 title="CVE-2017-7503"> +<p> +In 2017, Red Hat published <jump href="https://www.cve.org/CVERecord?id=CVE-2017-7503";>CVE-2017-7503</jump>. Review Comment: malformed tag -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: j-dev-unsubscr...@xerces.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: j-dev-unsubscr...@xerces.apache.org For additional commands, e-mail: j-dev-h...@xerces.apache.org
