RHSA-2015:2522-01 -- Redhat apache-commons-collectionsID: oval:org.secpod.oval:def:501717 | Date: (C)2015-12-07 (M)2024-02-19 |
Class: PATCH | Family: unix |
The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. It was found that the Apache commons-collections library permitted code execution when deserializing objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the commons-collections library.
Platform: |
Red Hat Enterprise Linux 7 |
Product: |
apache-commons-collections |