[GitHub] activemq pull request #321: Enable secure processing on all DocumentBuilderF...

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

[GitHub] activemq pull request #321: Enable secure processing on all DocumentBuilderF...

clebertsuconic-3
GitHub user coheigea opened a pull request:

    https://github.com/apache/activemq/pull/321

    Enable secure processing on all DocumentBuilderFactory.newInstance()

    Good security practices say that all DocumentBuilderFactory instances should enable the secure processing feature and disable doctypes to avoid XXE attacks.

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/coheigea/activemq dbf_secureproc

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/activemq/pull/321.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #321
   
----
commit a87b61e8be13f190c0f5db422e75a08f347c4052
Author: Colm O hEigeartaigh <coheigea@...>
Date:   2018-11-22T10:24:43Z

    Enable secure processing on all DocumentBuilderFactory.newInstance()

----


---
Reply | Threaded
Open this post in threaded view
|

[GitHub] activemq pull request #321: Enable secure processing on all DocumentBuilderF...

clebertsuconic-3
Github user asfgit closed the pull request at:

    https://github.com/apache/activemq/pull/321


---