BSA-2017-471
21366
24 December 2018
17 November 2017
Closed
Medium
4.3
N/A
CVE-2013-4517
Summary
Security Advisory ID : BSA-2017-471
Component : Apache Santuario
Revision : 2.0: Final
Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
Affected Products
No Brocade Fibre Channel technology products from Broadcom are currently known to be affected by this vulnerability.
Workaround
There are no workarounds that address this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | November 17, 2017 |
2.0 | Updated for Fibre Channel Only | December 24, 2018 |