'Responding to Security Vulnerabilities' & 'How to do GraphQL in Spring'

Agenda:
18:30 - Arrival, refreshments and networking
19:00 - Talk #1 from Mark Thomas
19:30 - Break
19:45 - Talk #2 from David North
20:30 - More networking and close

Talk #1 from Mark Thomas: Responding to a Remote Code Execution vulnerability: The good, the bad and the ugly
A post-mortem of CVE-2024-50379 & CVE-2024-56337

Responding to security vulnerabilities is always a little stressful and Remote Code Execution vulnerabilities are as bad as it gets. Until the
day after you announce an RCE vulnerability you receive multiple reports that the vulnerability is still exploitable.

This insider's view of the handling of these vulnerabilities will look
at what worked well, what didn't work so well and what could be done
better next time.

Talk #2 from David North: How to do GraphQL in Spring, and some lessons we've learned about JPA performance

Java Oxford is organised and hosted by Humand Talent, and sponsored by CoreFiling.

CoreFiling is a software and services company with global reach, the company was founded in 1997 and is based in Oxford, UK.