• Kafka Long-Term Support

    Keep your streaming data pipeline secure and performant and upgrade on your schedule with Kafka LTS. 

  • Supported Technologies

  • Vendor Consolidation Should Be Part of Your OSS Strategy

    In this blog, our expert details the advantages of open source vendor consolidation and the benefits of a unified and consolidated support strategy.

  • Enterprise Linux Support and Services

    Enterprise Linux Support from Perforce OpenLogic is backed by SLAs and delivered by experienced Linux experts. Get technical support for top open source Linux distributions.

  • Rocky Linux Support and Services

    Need Rocky Linux support? Learn about OpenLogic technical support, backed by guaranteed SLAs, and professional services for Rocky Linux here.

  • Apache Hadoop Support

    Apache Hadoop Support from OpenLogic keeps your Big Data infrastructure running smoothly. Get tech support delivered by Hadoop experts 24/7/365, backed by SLAs.

  • CVE-2020-7676

    NVD Listing: NVD - CVE-2020-7676

    Bug Fixes 

    • This release provides fixes for two vulnerabilities cherry-picked from AngularJS version 1.8.x 
    • Medium severity CVE-2020-7676  
    • High severity CWE-79 
    • Fix for CVE-2020-7676 addresses cross-site scripting (XSS) where the regex-based input HTML replacement may turn sanitized code into unsanitized code. 
    • Fix for CWE-79 provides a solution while using JqLite to prevent a possible high-severity cross-site scripting (XSS) vulnerability due to regex-based HTML replacement. 
    • Note that this patch is only for JqLite and not for JQuery, for more information about workarounds for JQuery consult the JQuery upgrade guide
    CVE-2020-7676
    AngularJS
    1.6.12
    5.4

  • CWE-79

    SNYK Listing: Cross-site Scripting (XSS) in angular | Snyk

    Bug Fixes 

    • This release provides fixes for two vulnerabilities cherry-picked from AngularJS version 1.8.x 
    • Medium severity CVE-2020-7676  
    • High severity CWE-79 
    • Fix for CVE-2020-7676 addresses cross-site scripting (XSS) where the regex-based input HTML replacement may turn sanitized code into unsanitized code. 
    • Fix for CWE-79 provides a solution while using JqLite to prevent a possible high-severity cross-site scripting (XSS) vulnerability due to regex-based HTML replacement. 
    • Note that this patch is only for JqLite and not for JQuery, for more information about workarounds for JQuery consult the JQuery upgrade guide
    CWE-79
    AngularJS
    1.6.12
    8.7

  • CVE-2023-26118

    NVD Listing: NVD - CVE-2023-26118

    Bug Fixes 

    • angular.copy(): Fixed ReDoS issue in angular.copy()  
    • This fix corrected the logic for copying RegExp in angular.copy and solved a high severity threat related to ReDoS (CVE-2023-26116
    • $resource: Fixed ReDoS issue with URLs that have trailing slashes  
    • Addressed the ReDoS high severity vulnerability (CVE-2023-26117). This fix resolved the trailing slashes issue in $resource.  
    • input[url]: Fixed ReDoS issue in input URL 
    • This fix addressed a high severity threat related to ReDoS and improves performance in URL_REGEXP (CVE-2023-26118
    CVE-2023-26118
    AngularJS
    1.6.13
    5.3

  • CVE-2023-26118

    NVD Listing: NVD - CVE-2023-26118

    Bug Fixes 

    • angular.copy(): Fixed ReDoS issue in angular.copy()  
    • This fix corrected the logic for copying RegExp in angular.copy and solved a high severity threat related to ReDoS (CVE-2023-26116
    • $resource: Fixed ReDoS issue with URLs that have trailing slashes  
    • Addressed the ReDoS high severity vulnerability (CVE-2023-26117). This fix resolved the trailing slashes issue in $resource.  
    • input[url]: Fixed ReDoS issue in input URL 
    • This fix addressed a high severity threat related to ReDoS and improves performance in URL_REGEXP (CVE-2023-26118
    CVE-2023-26118
    AngularJS
    1.8.6
    5.3