[jira] [Resolved] (WSS-707) Update Santuario to fix CVE-2023-44483

Colm O hEigeartaigh (Jira) Mon, 23 Oct 2023 22:19:05 -0700


     [ 
https://issues.apache.org/jira/browse/WSS-707?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Colm O hEigeartaigh resolved WSS-707.
-------------------------------------
    Resolution: Fixed

> Update Santuario to fix CVE-2023-44483
> --------------------------------------
>
>                 Key: WSS-707
>                 URL: https://issues.apache.org/jira/browse/WSS-707
>             Project: WSS4J
>          Issue Type: Bug
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>            Priority: Major
>             Fix For: 3.0.2, 2.4.3, 2.3.5, 4.0.0
>
>
> Versions 4.0.0, 3.0.3, 2.3.4 and 2.2.6 of the Apache XML Security for Java 
> library have been released. A security advisory has been fixed in these 
> releases:
>  * CVE-2023-44483: Apache Santuario: Private Key disclosure in debug-log 
> output



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@ws.apache.org
For additional commands, e-mail: dev-h...@ws.apache.org

[jira] [Resolved] (WSS-707) Update Santuario to fix CVE-2023-44483

Reply via email to