rdelval closed issue #62: Flag for enabling SLA Aware killing for non-prod tasks
URL: https://github.com/apache/aurora/issues/62
This is an automated message from the Apache Git Service.
To respond to the message, please log
rdelval merged pull request #67: Adding flag to enable SLA aware killing for
non production workloads.
URL: https://github.com/apache/aurora/pull/67
This is an automated message from the Apache Git Service.
To respond to
larrycameron80 opened a new issue #82: Arbitrary Code Injection
URL: https://github.com/apache/aurora/issues/82
Arbitrary Code Injection
Vulnerable module: jline:jline
Introduced through: org.apache.zookeeper:zookeeper@3.4.8,
org.apache.curator:curator-client@2.12.0 and others
larrycameron80 opened a new issue #81: Access Control Bypass
URL: https://github.com/apache/aurora/issues/81
Access Control Bypass
Vulnerable module: org.apache.zookeeper:zookeeper
Introduced through: org.apache.zookeeper:zookeeper@3.4.8,
org.apache.curator:curator-client@2.12.0 and
larrycameron80 opened a new issue #79: Timing Attack
URL: https://github.com/apache/aurora/issues/79
Timing Attack
Vulnerable module: org.eclipse.jetty:jetty-util
Introduced through: org.eclipse.jetty:jetty-servlets@9.3.11.v20160721,
org.eclipse.jetty:jetty-server@9.3.11.v20160721
larrycameron80 opened a new issue #80: XML External Entity (XXE) Injection
URL: https://github.com/apache/aurora/issues/80
XML External Entity (XXE) Injection
Vulnerable module: c3p0:c3p0
Introduced through: org.quartz-scheduler:quartz@2.2.2
Detailed paths
Introduced through:
larrycameron80 opened a new issue #78: Deserialization of Untrusted Data
URL: https://github.com/apache/aurora/issues/78
Deserialization of Untrusted Data
Vulnerable module: com.fasterxml.jackson.core:jackson-databind
Introduced through:
larrycameron80 opened a new issue #76: Denial of Service (DoS)
URL: https://github.com/apache/aurora/issues/76
Denial of Service (DoS)
Vulnerable module: org.apache.zookeeper:zookeeper
Introduced through: org.apache.zookeeper:zookeeper@3.4.8,
org.apache.curator:curator-client@2.12.0
larrycameron80 opened a new issue #75: Cache Poisoning
URL: https://github.com/apache/aurora/issues/75
Cache Poisoning
Vulnerable module: org.eclipse.jetty:jetty-server
Introduced through: org.eclipse.jetty:jetty-server@9.3.11.v20160721,
larrycameron80 opened a new issue #77: Deserialization of Untrusted Data
URL: https://github.com/apache/aurora/issues/77
Deserialization of Untrusted Data
Vulnerable module: com.fasterxml.jackson.core:jackson-databind
Introduced through:
rdelval closed issue #79: Timing Attack
URL: https://github.com/apache/aurora/issues/79
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go
rdelval closed issue #84: Information Exposure
URL: https://github.com/apache/aurora/issues/84
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #71: Authentication Bypass
URL: https://github.com/apache/aurora/issues/71
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #77: Deserialization of Untrusted Data
URL: https://github.com/apache/aurora/issues/77
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use
rdelval closed issue #85: Unsafe Dependancy Resolution
URL: https://github.com/apache/aurora/issues/85
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
rdelval closed issue #81: Access Control Bypass
URL: https://github.com/apache/aurora/issues/81
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #76: Denial of Service (DoS)
URL: https://github.com/apache/aurora/issues/76
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #83: Directory Traversal
URL: https://github.com/apache/aurora/issues/83
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above
rdelval closed issue #73: Authorization Bypass
URL: https://github.com/apache/aurora/issues/73
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #82: Arbitrary Code Injection
URL: https://github.com/apache/aurora/issues/82
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #75: Cache Poisoning
URL: https://github.com/apache/aurora/issues/75
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to
rdelval closed issue #74: Cache Poisoning
URL: https://github.com/apache/aurora/issues/74
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to
rdelval closed issue #78: Deserialization of Untrusted Data
URL: https://github.com/apache/aurora/issues/78
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use
rdelval closed issue #70: Arbitrary Code Execution during Deserialization
URL: https://github.com/apache/aurora/issues/70
This is an automated message from the Apache Git Service.
To respond to the message, please log on to
rdelval closed issue #72: Authorization Bypass
URL: https://github.com/apache/aurora/issues/72
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL
rdelval closed issue #86: XML External Entity (XXE) Injection
URL: https://github.com/apache/aurora/issues/86
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and
rdelval closed issue #80: XML External Entity (XXE) Injection
URL: https://github.com/apache/aurora/issues/80
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and
larrycameron80 opened a new issue #72: Authorization Bypass
URL: https://github.com/apache/aurora/issues/72
Authorization Bypass
Vulnerable module: org.eclipse.jetty:jetty-client
Introduced through: org.eclipse.jetty:jetty-rewrite@9.3.11.v20160721
Detailed paths
Introduced
larrycameron80 opened a new issue #73: Authorization Bypass
URL: https://github.com/apache/aurora/issues/73
Authorization Bypass
Vulnerable module: org.eclipse.jetty:jetty-server
Introduced through: org.eclipse.jetty:jetty-server@9.3.11.v20160721,
larrycameron80 opened a new issue #70: Arbitrary Code Execution during
Deserialization
URL: https://github.com/apache/aurora/issues/70
Arbitrary Code Execution during Deserialization
Vulnerable module: org.beanshell:bsh
Introduced through: org.asynchttpclient:async-http-client@2.0.37
larrycameron80 opened a new issue #71: Authentication Bypass
URL: https://github.com/apache/aurora/issues/71
Authentication Bypass
Vulnerable module: org.apache.zookeeper:zookeeper
Introduced through: org.apache.zookeeper:zookeeper@3.4.8,
org.apache.curator:curator-client@2.12.0 and
rdelval commented on issue #69: Updating relese notes and scheduler
documentation
URL: https://github.com/apache/aurora/pull/69#issuecomment-532005374
thanks @mauri !
This is an automated message from the Apache Git Service.
rdelval merged pull request #69: Updating relese notes and scheduler
documentation
URL: https://github.com/apache/aurora/pull/69
This is an automated message from the Apache Git Service.
To respond to the message, please
larrycameron80 opened a new issue #83: Directory Traversal
URL: https://github.com/apache/aurora/issues/83
Directory Traversal
Vulnerable module: org.apache.shiro:shiro-web
Introduced through: org.apache.shiro:shiro-web@1.4.0
Detailed paths
Introduced through:
larrycameron80 opened a new issue #85: Unsafe Dependancy Resolution
URL: https://github.com/apache/aurora/issues/85
Unsafe Dependancy Resolution
Vulnerable module: com.beust:jcommander
Introduced through: com.beust:jcommander@1.72 and
org.asynchttpclient:async-http-client@2.0.37
larrycameron80 opened a new issue #86: XML External Entity (XXE) Injection
URL: https://github.com/apache/aurora/issues/86
XML External Entity (XXE) Injection
Vulnerable module: org.quartz-scheduler:quartz
Introduced through: org.quartz-scheduler:quartz@2.2.2
Detailed paths
36 matches
Mail list logo