Bug 547008 - [SECURITY] HTTP Resolution of dependencies in build expose Orion build to MITM attack compromise
Summary: [SECURITY] HTTP Resolution of dependencies in build expose Orion build to MIT...
Status: NEW
Alias: None
Product: Orion (Archived)
Classification: ECD
Component: Deployment (show other bugs)
Version: unspecified   Edit
Hardware: All All
: P3 critical (vote)
Target Milestone: ---   Edit
Assignee: Project Inbox CLA
QA Contact:
URL:
Whiteboard:
Keywords: security
Depends on:
Blocks:
 
Reported: 2019-05-06 10:29 EDT by Jonathan Leitschuh CLA
Modified: 2020-01-10 11:41 EST (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jonathan Leitschuh CLA 2019-05-06 10:29:45 EDT 
See Details:

https://bugs.eclipse.org/bugs/show_bug.cgi?id=544852
Comment 1 Wayne Beaton CLA 2020-01-10 11:41:38 EST 
Project team, there's help regarding how we handle vulnerability reports in the handbook.

https://www.eclipse.org/projects/handbook/#vulnerability