This is an official update to the "Credit" section of the vulnerability
announcement.
Credit:
The vulnerability was initially discovered by Jinny Ramsmark of Defensify
and further reported to the Ignite community by Sriveena Mattaparth of
Ekaplus"
Denis Magda,
On behalf of Apache Ignite PMC
On M
Denis,
It has been done in the same day as it announced here as described at
https://www.apache.org/security/committers.html#vulnerability-handling.
Probably it require some time to information to be updated.
Also I can confirm that no any plans to provide patch for any previous
versions of Igni
Yury,
Could you please update the CVE with the details from this announcement?
Nick, to my knowledge, there are no any plans to propagate this fix to the
downstream versions such as 2.7, etc.
-
Denis
On Wed, Jun 3, 2020 at 8:10 AM Nick Popov wrote:
> Are you going to provide CVE-2020-1964 pa
Are you going to provide CVE-2020-1964 patches and patch instructions for
previous Ignite versions?
Regards,
-Nick
From: Sriveena Mattaparthi
Sent: Wednesday, June 3, 2020 9:04 AM
To: u...@ignite.apache.org; dev ; annou...@apache.org;
Apache Security Team
Subject: COMMERCIAL:RE: [CVE-2020-196
Thanks, Could you please confirm when the analysis will be updated here for the
CVE logged.
https://nvd.nist.gov/vuln/detail/CVE-2020-1963
Regards,
Sriveena
From: Юрий
Sent: 03 June 2020 16:02
To: dev ; u...@ignite.apache.org; annou...@apache.org;
Apache Security Team ; Sriveena Mattaparthi
