Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-11888

http request header values should be checked for validity before allowing a request to proceed

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.14.2
    • Fix Version/s: 2.14.4
    • Component/s: Security
    • Labels:
    • Story Points:
      3
    • Sprint:
      Sprint 89

      Description

      Certain HTTP request headers have well established value formats. Nexus should check the format of these header values and reject the request with a 400 response in such a case. Log a message in nexus.log in such a case at INFO level.

        Attachments

          Activity

            People

            Assignee:
            jtom Joe Tom
            Reporter:
            mprescott Michael Prescott
            Last Updated By:
            Peter Lynch Peter Lynch
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:
              Date of First Response:

                tigCommentSecurity.panel-title