OL CVE Issue Summary:
Fixed an issue where, on case-insensitive file systems, security constraints defined on the pathInfo portion of URLs
mapped to the CGI servlet could be bypassed using specially crafted request paths. The fix ensures consistent case handling during security constraint evaluation, preventing unauthorized access to protected CGI resources under these conditions.
OL CVE Issue Summary:
Spring Framework could fail to detect security annotations declared on methods in generic superclasses or interfaces,
potentially causing authorization checks to be skipped when using @EnableMethodSecurity. This release corrects annotation resolution across parameterized type hierarchies to ensure method-level security is consistently enforced.
OL CVE Issue Summary:
The tarfile module implementation processes tar archives with negative offsets without error, resulting in an infinite loop and deadlock during the parsing of maliciously crafted archives, which can lead to a denial of service.
What is Kafka Connect? Get an overview of how Kafka Connect works, the Kafka Connect architecture, and why this data integration framework is important for enterprise Kafka deployments.
Want to improve Kafka performance? Discover critical Kafka anti-patterns, how to balance throughput vs. latency, and why you should move to KRaft in this blog.
In this blog, our expert explains why it makes sense to install Apache Kafka on top of Kubernetes, what Strimzi does, and how to quickly spin up a cluster in a Minikube environment.
On September 25, experts from Perforce OpenLogic will share insights gained from working with customers across various industries, from aerospace and finance to retail, to tackle their
Are you attending Big Data LDN? Make sure to book a one-on-one meeting with the OpenLogic team to explore our open source support solutions.
In this webinar, OpenLogic Spring experts will unpack the often-overlooked reality of dependency management in end-of-life (EOL) Spring environments. You’ll hear how transitive
