All errata/sisyphus/ALT-PU-2016-3300-1
ALT-PU-2016-3300-1

Package update cxf in branch sisyphus

Version2.7.11-alt1_3jpp8
Task#158525
Published2016-02-10
Max severityMEDIUM
Severity:

Closed issues (11)

CVE-2012-5786
MEDIUM5.8

The wsdl_first_https sample code in distribution/src/main/release/samples/wsdl_first_https/src/main/ in Apache CXF before 2.7.0 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. NOTE: The vendor states that the sample had specifically used a flag to bypass the DN check

Published: 2012-11-04Modified: 2026-04-29
CVSS 2.0MEDIUM 5.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:N
References
CVE-2014-0034
MEDIUM4.3

The SecurityTokenService (STS) in Apache CXF before 2.6.12 and 2.7.x before 2.7.9 does not properly validate SAML tokens when caching is enabled, which allows remote attackers to gain access via an invalid SAML token.

Published: 2014-07-07Modified: 2025-04-12
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:N/A:N
References
CVE-2014-0035
MEDIUM4.3

The SymmetricBinding in Apache CXF before 2.6.13 and 2.7.x before 2.7.10, when EncryptBeforeSigning is enabled and the UsernameToken policy is set to an EncryptedSupportingToken, transmits the UsernameToken in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.

Published: 2014-07-07Modified: 2025-04-12
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:N/A:N
References
CVE-2014-0109
MEDIUM4.3

Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote attackers to cause a denial of service (memory consumption) via a large request with the Content-Type set to text/html to a SOAP endpoint, which triggers an error.

Published: 2014-05-08Modified: 2025-04-12
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:N/A:P
References
CVE-2014-0110
MEDIUM4.3

Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote attackers to cause a denial of service (/tmp disk consumption) via a large invalid SOAP message.

Published: 2014-05-08Modified: 2025-04-12
CVSS 2.0MEDIUM 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:N/A:P
References
CVE-2014-3584
MEDIUM5.0

The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before 2.7.8, and 3.0.x before 3.0.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the authorization header of a request to a JAX-RS service.

Published: 2014-10-30Modified: 2025-04-12
CVSS 2.0MEDIUM 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P
References
GHSA-38x2-fp9m-87mx
NONE

Improper Input Validation in Apache CXF

Published: 2022-05-13Modified: 2023-12-22
References
GHSA-5wqf-h3r3-gxvh
NONE

Uncontrolled Resource Consumption in Apache CXF

Published: 2022-05-13Modified: 2023-12-22
References
GHSA-5xf9-3v63-ww6f
NONE

Uncontrolled Resource Consumption in Apache CXF

Published: 2022-05-13Modified: 2023-12-22
References
GHSA-gw5j-77f9-v2g2
NONE

Loop with Unreachable Exit Condition in Apache CXF

Published: 2022-05-13Modified: 2024-05-15
References
GHSA-v45r-rj5x-hpg2
NONE

Cleartext Transmission of Sensitive Information in Apache CXF

Published: 2022-05-13Modified: 2023-12-22
References