Apache Camel critical disclosure vulnerability

2014.03.01

Credit: Christian

Risk: High

Local: No

Remote: Yes

CVE: CVE-2014-0002 | CVE-2014-0003

CWE: N/A

If you are using the Apache Camel XSLT component, please note that the
security advisories CVE-2014-0002 and CVE-2014-0003 may affect you.

Please study these critical security vulnerability carefully!

http://camel.apache.org/security-advisories.data/CVE-2014-0002.txt.asc
http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc

You can download the fixed Apache Camel 2.11.x and 2.12.x version from the
Apache mirrors or from the Central Maven repository.

[1] http://camel.apache.org/xslt
[2] http://camel.apache.org/download

On behalf of the Camel PMC,
Christian

References:

http://camel.apache.org/security-advisories.data/CVE-2014-0002.txt.asc

http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Apache Camel critical disclosure vulnerability

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.