Jasper server 7.2.0 Vulnerability Issue

0

Hi All,

Can any one please confirm that Jasper reports server 7.2.0 does it have or not the current affetcted vulnerabilty issue like other listed on below link.

Curernt vulnerability on most server - TIBCO JasperReports Library Directory Traversal Vulnerability. 

https://www.tibco.com/support/advisories/2019/03/tibco-security-advisory-march-6-2019-tibco-jasperreports-library-2018-18809

 TIBCO portal it dose not confirm that whether Jasper reports server 7.2.0 version does have or not. Please let me know so that it can help me to opt for this server and resolving the issue.

Thanks in Advance!

Regards,

Shashi

shashiutl07's picture
Joined: Oct 21 2019 - 7:08am
Last seen: 3 weeks 4 days ago

Refer to https://www.tibco.com/security

Resources

Security Advisories

TIBCO distributes information about security vulnerabilities and remediation in its products through security advisories.

Public Security Notices

TIBCO’s response to general publicly announced security issues can be found on our Public Notices page.

Security Policy, Practices and Processes

For details on TIBCO Security Policies, Practices and Processes please see the TIBCO Security Guidelines.

djohnson53 - 3 weeks 5 days ago

If it is not on the list then it is not affected. That is how it is meant to be read. What is on the list is "TIBCO JasperReports Server version 7.1.0".

vchiem - 3 weeks 6 days ago

If you read the advisory carefully, It states that the solution for users of JRL/JRS 7.1.0 is to upgrade to 7.1.1 or higher - 7.2.0  >  7.1.1.

If you have additional questions/concerns, you'll need to contact the security folks. Refer to TIBCO Security Issues - Policy and Procedure

djohnson53 - 3 weeks 5 days ago

0 Answers:

No answers yet
Feedback