groovy
  1. groovy
  2. GROOVY-6210

Fix javadoc/groovydoc vulnerability

    Details

    • Type: Bug Bug
    • Status: Closed Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.1.5
    • Fix Version/s: 2.1.6, 1.8.10
    • Component/s: Documentation
    • Labels:
      None
    • Number of attachments :
      0

      Description

      Both javadoc and groovydoc are vulnerable to an issue fixed only in JDK 1.7.0 update 25.

      See
      [1] http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html
      [2] http://www.kb.cert.org/vuls/id/225657

      The build should be patched to fix the generated files independently of the JDK being used to build Groovy.

        Activity

        There are no comments yet on this issue.

          People

          • Assignee:
            CÚdric Champeau
            Reporter:
            CÚdric Champeau
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: