tracker issue : CF-4126660

select a category, or use search below
(searches all categories and all time range)
Title:

Security Analyzer Does not warn about CFMX_COMPAT algorithms

| View in Tracker

Status/Resolution/Reason: Closed/Fixed/

Reporter/Name(from Bugbase): Peter Freitag / Peter Freitag (Peter Freitag)

Created: 03/09/2016

Components: Security Analyzer

Versions: 2016

Failure Type: Unspecified

Found In Build/Fixed In Build: Alpha_v31 /

Priority/Frequency: Minor / Unknown

Locale/System: English / Mac All

Vote Count: 0

Problem Description: It should warn that CFMX_COMPAT is not a secure encryption algorithm when algorithm is left out, or CFMX_COMPAT  is specified.

Steps to Reproduce: Run security analyzer on: 

Encrypt(1,2, "CFMX_COMPAT")

Actual Result: Not found

Expected Result: Expect a warning

Any Workarounds: no

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	4126660

External Customer Info:
External Company: Foundeo Inc.
External Customer Name: Peter Freitag
External Customer Email: PETE@FOUNDEO.COM
External Test Config:

Attachments:

Comments:

Adding BUG AUDIT TRAIL ********action: updated fieldName: Priority newValue: 1 oldValue: 0 oprid: vmannebo recordName: RQ_DEFECT timpestamp: 2016-02-16 15:13:35.0 action: updated fieldName: Owner newValue: Blank oldValue: preethi oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: Closed By newValue: preethi oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: Date Closed newValue: 2015-09-22 22:53:50.0 oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: Reason newValue: Blank oldValue: Fixed oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: State newValue: Closed oldValue: Open oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: Status newValue: Fixed oldValue: ToTest oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-09-23 05:53:50.0 action: updated fieldName: Date Fixed newValue: 2015-09-22 00:09:20.0 oldValue: Blank oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:21.0 action: updated fieldName: Fixed By newValue: uogra oldValue: Blank oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:20.0 action: updated fieldName: Owner newValue: preethi oldValue: uogra oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:20.0 action: updated fieldName: Reason newValue: Fixed oldValue: Investigate oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:20.0 action: updated fieldName: Status newValue: ToTest oldValue: ToFix oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:20.0 action: updated fieldName: Changelist newValue: 295628 oldValue: Blank oprid: uogra recordName: RQ_DEFECT timpestamp: 2015-09-22 07:09:20.0 action: updated fieldName: Status newValue: ToFix oldValue: Unverified oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: Owner newValue: uogra oldValue: preethi oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: Priority newValue: 0 oldValue: 0 oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: Reason newValue: Investigate oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: Fix By Product Milestone newValue: Beta oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: Fix By Milestone newValue: Beta oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-08-06 05:55:53.0 action: updated fieldName: QE Assigned newValue: preethi oldValue: prk oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0 action: updated fieldName: Version newValue: 12.0 oldValue: 3.1 oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0 action: updated fieldName: Product newValue: ColdFusion oldValue: ColdFusion Builder oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0 action: updated fieldName: Dev Assigned newValue: uogra oldValue: bukkittu oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0 action: updated fieldName: Fix By Product Milestone newValue: Blank oldValue: Blank oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0 action: updated fieldName: Owner newValue: preethi oldValue: prk oprid: prk recordName: RQ_DEFECT timpestamp: 2015-07-28 05:37:07.0
Comment by CFwatson U.
3575 | March 09, 2016 04:28:39 AM GMT
Added By: PreRelease User User Name:Peter Freitag Note Added: Entered Bug. Date Added :2015-07-27 19:14:23.0
Comment by CFwatson U.
3576 | March 09, 2016 04:28:40 AM GMT