|
|
Subscribe / Log in / New account

Debian alert DLA-1896-1 (commons-beanutils)



From:
              "Chris Lamb" <lamby@debian.org> 


To:
              debian-lts-announce@lists.debian.org 


Subject:
              [SECURITY] [DLA 1896-1] commons-beanutils security update 


Date:
              Sat, 24 Aug 2019 15:49:34 +0100


Message-ID:
              <4fae9d4d-09d9-49ac-9ab4-71637035050d@www.fastmail.com>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : commons-beanutils
Version        : 1.9.2-1+deb8u1
CVE ID         : CVE-2019-10086

It was discovered that there was a remote arbitrary code
vulnerability in commons-beanutils, a set of utilities for
manipulating JavaBeans code.

For Debian 8 "Jessie", this issue has been fixed in commons-beanutils
version 1.9.2-1+deb8u1.

We recommend that you upgrade your commons-beanutils packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=oKmR
-----END PGP SIGNATURE-----
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds