This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/ofbiz-site.git
The following commit(s) were added to refs/heads/master by this push:
new 382e80c Fixed: [SECURITY] (CVE-2025-26865) Refactor ControlFilter
class without functional changes (OFBIZ-13213)
382e80c is described below
commit 382e80cf2eebc4b91b32138fb826427668cf860f
Author: Jacques Le Roux <jacques.le.r...@les7arts.com>
AuthorDate: Fri Mar 7 15:05:42 2025 +0100
Fixed: [SECURITY] (CVE-2025-26865) Refactor ControlFilter class without
functional changes (OFBIZ-13213)
---
security.html | 1 +
template/page/security.tpl.php | 1 +
2 files changed, 2 insertions(+)
diff --git a/security.html b/security.html
index d30e807..ecea5e1 100644
--- a/security.html
+++ b/security.html
@@ -141,6 +141,7 @@
<h3>List of Known Vulnerabilities</h3>
<ul class="iconsList">
+ <li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26865"
target="external">CVE-2025-26865</a>; affected OFBiz between releases 18.12.17
and 18.12.18; fixed in 18.12.18 with commits <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=5c725123d2";
target="external">5c725123d2</a>, <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=e663c6c1e9";
target="external">e663c6c1e9</a>, <a href="https://gitbox.apa [...]
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-48962"
target="external">CVE-2024-48962</a>; affected releases before 18.12.17; fixed
in 18.12.17 with commit <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=761fb67d7f";
target="external">761fb67d7f</a></li>
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47208"
target="external">CVE-2024-47208</a>; affected releases before 18.12.17; fixed
in 18.12.17 with commit <a
href="https://github.com/apache/ofbiz-framework/commit/f044a7e5bf";
target="external">f044a7e5bf</a></li>
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45507"
target="external">CVE-2024-45507</a>; affected releases before 18.12.16; fixed
in 18.12.16 with commit <a
href="https://github.com/apache/ofbiz-framework/commit/ffb1bc4879";
target="external">ffb1bc4879</a></li>
diff --git a/template/page/security.tpl.php b/template/page/security.tpl.php
index 2e8e479..9cadb98 100644
--- a/template/page/security.tpl.php
+++ b/template/page/security.tpl.php
@@ -42,6 +42,7 @@
<h3>List of Known Vulnerabilities</h3>
<ul class="iconsList">
+ <li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26865"
target="external">CVE-2025-26865</a>; affected OFBiz between releases 18.12.17
and 18.12.18; fixed in 18.12.18 with commits <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=5c725123d2";
target="external">5c725123d2</a>, <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=e663c6c1e9";
target="external">e663c6c1e9</a>, <a href="https://gitbox.apa [...]
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-48962"
target="external">CVE-2024-48962</a>; affected releases before 18.12.17; fixed
in 18.12.17 with commit <a
href="https://gitbox.apache.org/repos/asf?p=ofbiz-framework.git;h=761fb67d7f";
target="external">761fb67d7f</a></li>
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47208"
target="external">CVE-2024-47208</a>; affected releases before 18.12.17; fixed
in 18.12.17 with commit <a
href="https://github.com/apache/ofbiz-framework/commit/f044a7e5bf";
target="external">f044a7e5bf</a></li>
<li><i class="icon-pin"></i> <a
href="//cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45507"
target="external">CVE-2024-45507</a>; affected releases before 18.12.16; fixed
in 18.12.16 with commit <a
href="https://github.com/apache/ofbiz-framework/commit/ffb1bc4879";
target="external">ffb1bc4879</a></li>
