[midPoint-git] [Evolveum/midpoint] 2bd531: Removing security advisories and guide from midpoi...
Radovan Semancik
noreply at github.com
Fri Feb 9 14:43:47 CET 2024
Branch: refs/heads/support-4.8
Home: https://github.com/Evolveum/midpoint
Commit: 2bd5319acee787583d89262f65e331379a58ce66
https://github.com/Evolveum/midpoint/commit/2bd5319acee787583d89262f65e331379a58ce66
Author: Radovan Semancik <radovan.semancik at evolveum.com>
Date: 2024-02-09 (Fri, 09 Feb 2024)
Changed paths:
R docs/security/advisories/001-midpoint-user-interface-clickjacking.adoc
R docs/security/advisories/002-abuse-of-expressions-in-midpoint-reports.adoc
R docs/security/advisories/003-xxe-vulnerabilities.adoc
R docs/security/advisories/004-ad-and-ldap-connectors-do-not-check-certificate-validity.adoc
R docs/security/advisories/005-workitem-identifier-weakness.adoc
R docs/security/advisories/006-plain-text-password-in-temporary-files.adoc
R docs/security/advisories/007-plain-text-password-in-task-objects-in-repository.adoc
R docs/security/advisories/008-xss-vulnerability-in-displayname.adoc
R docs/security/advisories/009-soap-web-service-vulnerable-to-brute-force-attack.adoc
R docs/security/advisories/010-authorizations-not-applied-properly-to-preview-changes.adoc
R docs/security/advisories/011-stored-xss-vulnerability-via-name-property.adoc
R docs/security/advisories/012-user-changes-and-user-session-updates.adoc
R docs/security/advisories/013-http-error-codes-used-for-secq-rest-authentication-reveal-user-existence.adoc
R docs/security/advisories/014-ghostcat-vulnerability-of-apache-tomcat.adoc
R docs/security/advisories/015-disabled-users-able-to-log-in-with-ldap.adoc
R docs/security/advisories/016-unauth-user-is-able-to-reset-password.adoc
R docs/security/advisories/017-self-registration-allows-to-change-password.adoc
R docs/security/advisories/018-less-privileged-user-able-to-execute-custom-groovy-scripts.adoc
R docs/security/advisories/019-xss-in-fullName-displayName.adoc
R docs/security/advisories/020-csrf-not-working-when-using-saml2.adoc
R docs/security/advisories/automated-scanning.adoc
R docs/security/advisories/index.adoc
M docs/security/credentials/password-storage-configuration.adoc
M docs/security/index.adoc
R docs/security/security-guide.adoc
M docs/security/trusted-actions/index.adoc
Log Message:
-----------
Removing security advisories and guide from midpoint reference docs
Commit: f42b23daed54e360b35b9739e3a532b818925ea6
https://github.com/Evolveum/midpoint/commit/f42b23daed54e360b35b9739e3a532b818925ea6
Author: Radovan Semancik <radovan.semancik at evolveum.com>
Date: 2024-02-09 (Fri, 09 Feb 2024)
Changed paths:
R docs/security/advisories/001-midpoint-user-interface-clickjacking.adoc
R docs/security/advisories/002-abuse-of-expressions-in-midpoint-reports.adoc
R docs/security/advisories/003-xxe-vulnerabilities.adoc
R docs/security/advisories/004-ad-and-ldap-connectors-do-not-check-certificate-validity.adoc
R docs/security/advisories/005-workitem-identifier-weakness.adoc
R docs/security/advisories/006-plain-text-password-in-temporary-files.adoc
R docs/security/advisories/007-plain-text-password-in-task-objects-in-repository.adoc
R docs/security/advisories/008-xss-vulnerability-in-displayname.adoc
R docs/security/advisories/009-soap-web-service-vulnerable-to-brute-force-attack.adoc
R docs/security/advisories/010-authorizations-not-applied-properly-to-preview-changes.adoc
R docs/security/advisories/011-stored-xss-vulnerability-via-name-property.adoc
R docs/security/advisories/012-user-changes-and-user-session-updates.adoc
R docs/security/advisories/013-http-error-codes-used-for-secq-rest-authentication-reveal-user-existence.adoc
R docs/security/advisories/014-ghostcat-vulnerability-of-apache-tomcat.adoc
R docs/security/advisories/015-disabled-users-able-to-log-in-with-ldap.adoc
R docs/security/advisories/016-unauth-user-is-able-to-reset-password.adoc
R docs/security/advisories/017-self-registration-allows-to-change-password.adoc
R docs/security/advisories/018-less-privileged-user-able-to-execute-custom-groovy-scripts.adoc
R docs/security/advisories/019-xss-in-fullName-displayName.adoc
R docs/security/advisories/020-csrf-not-working-when-using-saml2.adoc
R docs/security/advisories/automated-scanning.adoc
R docs/security/advisories/index.adoc
M docs/security/credentials/password-storage-configuration.adoc
M docs/security/index.adoc
R docs/security/security-guide.adoc
M docs/security/trusted-actions/index.adoc
Log Message:
-----------
Merge branch 'docs/cleanup-4.8' into support-4.8
Commit: 8d7cba40413267596b9d526e2f8ce17de62121e7
https://github.com/Evolveum/midpoint/commit/8d7cba40413267596b9d526e2f8ce17de62121e7
Author: Radovan Semancik <radovan.semancik at evolveum.com>
Date: 2024-02-09 (Fri, 09 Feb 2024)
Changed paths:
R docs/security/advisories/021-not-invited-user-able-to-register.adoc
Log Message:
-----------
Removing security advisories
Compare: https://github.com/Evolveum/midpoint/compare/6c64a1698ea9...8d7cba404132
More information about the midPoint-svn
mailing list