Codebase list libxstream-java / debian/1.4.15-3+deb11u1 debian / patches / debian-specific-whitelist-extension.patch
debian/1.4.15-3+deb11u1

Tree @debian/1.4.15-3+deb11u1 (Download .tar.gz)

debian-specific-whitelist-extension.patch @debian/1.4.15-3+deb11u1raw · history · blame 

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
From: Markus Koschany <apo@debian.org>
Date: Sat, 2 Oct 2021 13:29:21 +0200
Subject: debian-specific-whitelist-extension

---
 xstream/src/java/com/thoughtworks/xstream/XStream.java | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/xstream/src/java/com/thoughtworks/xstream/XStream.java b/xstream/src/java/com/thoughtworks/xstream/XStream.java
index d5633eb..129be1c 100644
--- a/xstream/src/java/com/thoughtworks/xstream/XStream.java
+++ b/xstream/src/java/com/thoughtworks/xstream/XStream.java
@@ -655,6 +655,10 @@ public class XStream {
         allowTypeHierarchy(Number.class);
         allowTypeHierarchy(Throwable.class);
         allowTypeHierarchy(TimeZone.class);
+        allowTypesByWildcard(new
+                String[]{"com.martiansoftware.jsap.xml.**",
+                    "com.artofsolving.jodconverter.**","org.apache.jmeter.**",
+                    "org.apache.tiles.autotag.**"});
 
         Class type = JVM.loadClassForName("java.lang.Enum");
         if (type != null) {