SCM-Manager

    Search by
    HomeBlogDownloadDocsPluginsCLISupport

    XML-Parser Expat (CVE-2022-23852)

    Posted on 2022-02-02 by Eduard Heimbuch


    Hey SCM-Manager Community,

    Maybe you have heard about a new vulnerability regarding Expat which is likely as dangerous as Log4Shell.

    The SCM-Manager is only affected if you have the PlantUML-Plugin installed. We highly recommend uninstalling this plugin until we can provide a fixed version. If your SCM-Manager is running inside the Cloudogu Ecosystem you also need to take down the PlantUML Dogu.

    Also find the related forum post here.


    Posted in scm-manager, security


    Special

    • RSS

    Categories

    • 1 administration
    • 2 administration-plugins
    • 19 authentication-plugins
    • 3 authorization-plugins
    • 1 cli
    • 9 cloudogu
    • 5 continuous-integration-plugins
    • 17 information-plugins
    • 9 infrastructure
    • 10 issue-tracker-plugins
    • 2 library-plugins
    • 2 mercurial
    • 8 miscellaneous-plugins
    • 1 plugin-center
    • 74 plugins
    • 110 release
    • 1 scm-binary-search-plugin
    • 2 scm-ci-plugin
    • 1 scm-commit-message-checker-plugin
    • 1 scm-commit-search-plugin
    • 2 scm-content-search-plugin
    • 1 scm-editor-plugin
    • 1 scm-expression-language-plugin
    • 1 scm-external-file-plugin
    • 1 scm-jira-plugin
    • 1 scm-landingpage-plugin
    • 1 scm-mail-plugin
    • 1 scm-manage-folder-plugin
    • 134 scm-manager
    • 1 scm-pathwp-plugin
    • 1 scm-redmine-plugin
    • 3 scm-review-plugin
    • 1 scm-scw-plugin
    • 1 scm-smeagol-plugin
    • 1 scm-ssh-plugin
    • 1 scm-webhook-plugin
    • 6 security
    • 5 support
    • 5 universe
    • 1 v1
    • 7 workflow-plugins

    Authors

    • 5 Daniel Huchthausen
    • 17 Eduard Heimbuch
    • 6 Konstantin Schaper
    • 1 Matthias Thieroff
    • 15 René Pfeuffer
    • 16 SCM-Team
    • 156 Sebastian Sdorra
    • Imprint
    • Privacy

    © 2023 Home of SCM-Manager

    Supported by Cloudogu GmbH