(ofbiz-framework) branch trunk updated (36b1e6d409 -> f95ab015f3)

jleroux Thu, 16 Jan 2025 07:06:06 -0800

This is an automated email from the ASF dual-hosted git repository.

jleroux pushed a change to branch trunk
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git



    from 36b1e6d409 Publish build scans to develocity.apache.org #5165 (#871)
     new 449fd10cc9 Revert "Improved: Path traversal leading to RCE 
(OFBIZ-13092)"
     new f95ab015f3 Fixed: [SECURITY] (CVE-2024-36104) Path traversal leading 
to RCE (OFBIZ-13092)

The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 framework/security/config/security.properties      |  2 +-
 .../org/apache/ofbiz/security/SecuredUpload.java   |  6 ---
 .../apache/ofbiz/webapp/control/ControlFilter.java | 55 +++++++++++++++++++---
 3 files changed, 49 insertions(+), 14 deletions(-)

(ofbiz-framework) branch trunk updated (36b1e6d409 -> f95ab015f3)

Reply via email to