Skip to content

Releases: csaf-tools/CVRF-CSAF-Converter

Release v1.0.0

02 May 12:06
@sustefil sustefil
1.0.0
140c145
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Release v1.0.0 Latest
Latest

Version 1.0.0 release, all issues labeled with acceptance are completed.

Assets 2
Loading

Release candidate 2: Fixed XXE vulnerability

14 Mar 12:16
@sustefil sustefil
1.0.0-rc2
ff20a6c
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Release candidate 2: Fixed XXE vulnerability Pre-release
Pre-release

RC 2 is fixing an XXE (XML eXternal Entities) vulnerability. This can lead to the inclusion of arbitrary (local) file content into the generated output document. An attacker can exploit this to disclose information from the system running the converter by using specially crafted XML input files.

This issue is being tracked as CVE-2022-27193.

Assets 2
Loading
0 Join discussion

Release candidate v1.0.0-rc1

28 Feb 16:24
@sustefil sustefil
1.0.0-rc1
6578371
Compare
Choose a tag to compare
Release candidate v1.0.0-rc1 Pre-release
Pre-release

Pre-release (release candidate) for handover of this project:

#12

Assets 2
Loading
0 Join discussion