Bug 547007 - [SECURITY] HTTP Resolution of dependencies in build expose BIRT build to MITM attack compromise
Summary: [SECURITY] HTTP Resolution of dependencies in build expose BIRT build to MITM...
Status: NEW
Alias: None
Product: z_Archived
Classification: Eclipse Foundation
Component: BIRT (show other bugs)
Version: unspecified   Edit
Hardware: All All
: P3 critical (vote)
Target Milestone: ---   Edit
Assignee: Birt-Build CLA
QA Contact:
URL:
Whiteboard:
Keywords: security
Depends on:
Blocks:
 
Reported: 2019-05-06 10:15 EDT by Jonathan Leitschuh CLA
Modified: 2020-01-10 11:41 EST (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jonathan Leitschuh CLA 2019-05-06 10:15:57 EDT 
See the report here:
https://bugs.eclipse.org/bugs/show_bug.cgi?id=544852
Comment 1 Wayne Beaton CLA 2020-01-10 11:41:51 EST 
Project team, there's help regarding how we handle vulnerability reports in the handbook.

https://www.eclipse.org/projects/handbook/#vulnerability