CVE-2014-8152
Published: 21 January 2015
Apache Santuario XML Security for Java 2.0.x before 2.0.3 allows remote attackers to bypass the streaming XML signature protection mechanism via a crafted XML document.
Notes
Author | Note |
---|---|
seth-arnold | bug introduced in 2.x branch |
Priority
Status
Package | Release | Status |
---|---|---|
libxml-security-java Launchpad, Ubuntu, Debian |
lucid |
Not vulnerable
|
precise |
Not vulnerable
|
|
trusty |
Does not exist
(trusty was not-affected)
|
|
upstream |
Released
(2.0.3)
|
|
utopic |
Not vulnerable
|