Change in ovirt-engine[master]: core: fix CVE-2014-3573

[rgolan at redhat.com]

Roy Golan has submitted this change and it was merged.

Change subject: core: fix CVE-2014-3573
......................................................................


core: fix CVE-2014-3573

single place in which DocumentBuilderFactory is constructed to apply
security settings.

Bug-Url: https://bugzilla.redhat.com/show_bug.cgi?id=1139000
Change-Id: Icf27db1ec13b6a16d9b7c77fd9710e8e6f6ec3c9
Signed-off-by: Alon Bar-Lev <alonbl at redhat.com>
---
M backend/manager/modules/bll/src/main/java/org/ovirt/engine/core/bll/InstallerMessages.java
M backend/manager/modules/restapi/interface/definition/pom.xml
M backend/manager/modules/restapi/interface/definition/src/main/java/org/ovirt/engine/api/rsdl/RsdlManager.java
M backend/manager/modules/restapi/interface/definition/src/main/modules/org/ovirt/engine/api/restapi-definition/main/module.xml
M backend/manager/modules/utils/src/main/java/org/ovirt/engine/core/utils/XmlUtils.java
M backend/manager/modules/utils/src/main/java/org/ovirt/engine/core/utils/ovf/xml/XmlDocument.java
A backend/manager/modules/uutils/src/main/java/org/ovirt/engine/core/uutils/xml/SecureDocumentBuilderFactory.java
7 files changed, 36 insertions(+), 6 deletions(-)

Approvals:
  Juan Hernandez: Looks good to me, but someone else must approve
  Roy Golan: Verified; Looks good to me, approved



-- 
To view, visit http://gerrit.ovirt.org/32563
To unsubscribe, visit http://gerrit.ovirt.org/settings

Gerrit-MessageType: merged
Gerrit-Change-Id: Icf27db1ec13b6a16d9b7c77fd9710e8e6f6ec3c9
Gerrit-PatchSet: 1
Gerrit-Project: ovirt-engine
Gerrit-Branch: master
Gerrit-Owner: Alon Bar-Lev <alonbl at redhat.com>
Gerrit-Reviewer: Juan Hernandez <juan.hernandez at redhat.com>
Gerrit-Reviewer: Roy Golan <rgolan at redhat.com>
Gerrit-Reviewer: automation at ovirt.org
Gerrit-Reviewer: oVirt Jenkins CI Server