CESA-2021:2683 -- centos 7 xstreamID: oval:org.secpod.oval:def:205877 | Date: (C)2021-07-21 (M)2023-11-13 |
Class: PATCH | Family: unix |
XStream is a Java XML serialization library to serialize objects to and deserialize object from XML. Security Fix: * XStream: remote command execution attack by manipulating the processed input stream For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.