/[Apache-SVN]
ViewVC logotype

Revision 1856952

Jump to revision: Previous Next
Author: lehmi
Date: Thu Apr 4 15:53:41 2019 UTC (5 years ago)
Changed paths: 6
Log Message: 
PDFBOX-4505: unify the usage of a XMLParser (DRY) to avoid a XML External Entity (XXE) attack as reported by Kurt Boberg of DocuSign CVE-2019-0228

Changed paths

Path Details
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/fdf/FDFAnnotationStamp.java modified , text changed
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/fdf/FDFDocument.java modified , text changed
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/fdf/FDFField.java modified , text changed
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/fdf/XMLUtil.java modified , text changed
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/interactive/form/PDXFAResource.java modified , text changed
Directorypdfbox/branches/2.0/pdfbox/src/main/java/org/apache/pdfbox/util/XMLUtil.java added
infrastructure at apache.org
 ViewVC Help
Powered by ViewVC 1.1.26