Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Tue, 12 Dec 2017 08:13:02 +0100
From: Lukasz Lenart <lukaszlenart@...che.org>
To: Struts Users Mailing List <user@...uts.apache.org>
Cc: announce@...che.org, announcements@...uts.apache.org, 
	oss-security@...ts.openwall.com
Subject: [ANN] [APACHE STRUTS] Security Bulletin S2-055: impact increased to
 High (related to CVE-2017-7525 - JSON Jackson library)

Hi,

After further clarification we increased impact of a vulnerability
reported to us and described as S2-055 to High. The vulnerability
exists in a JSON Jackson library and it's registered under
CVE-2017-7525. Please read the bulletin [1] and apply possible
solutions. This vulnerability impacts anyone using the vulnerable
Jackson JSON library (not only Struts users).

[1] https://cwiki.apache.org/confluence/display/WW/S2-055


Regards
-- 
Ɓukasz
+ 48 606 323 122 http://www.lenart.org.pl/

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ