|
Bugzilla – Activity log for bug 1216038: VUL-0: CVE-2023-42445: gradle: When Gradle parses XML files, resolving XML external entities is not disabled. Combined with an Out Of Band XXE attack (OOB-XXE), just parsing XML can lead to exfiltration of local text |
Back to bug 1216038
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| smash_bz | 2023-10-09 07:33:53 UTC | Group | SUSE Security Internal | |
| Whiteboard | CVSSv3.1:SUSE:CVE-2023-42445:6.8:(AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H) | |||
| maint-coord+maintenance-robot | 2023-10-09 08:13:50 UTC | Priority | P5 - None | P3 - Medium |
| stoyan.manolov | 2023-11-03 08:01:21 UTC | CC | gus.kenion, postadal | |
| Flags | needinfo?(gus.kenion) |
Back to bug 1216038