RHSA-2015:2671-01 -- Redhat jakarta-commons-collectionsID: oval:org.secpod.oval:def:501730 | Date: (C)2015-12-22 (M)2024-02-19 |
Class: PATCH | Family: unix |
The Jakarta/Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. It was found that the Apache commons-collections library permitted code execution when deserializing objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the commons-collections library.
Platform: |
Red Hat Enterprise Linux 5 |
Product: |
jakarta-commons-collections |