Skip to content

Block one more gadget type (ehcache, CVE-2019-17267) #2460

New issue
New issue
Closed
Closed
Block one more gadget type (ehcache, CVE-2019-17267)#2460
Labels
CVEIssues related to public CVEs (security vuln reports)
Milestone
2.9.10
@lufeirider

Description

@lufeirider
lufeirider
opened on Sep 17, 2019

Another gadget (*) type report regarding a class of ehcache package (follow up for #2387)

Mitre id: CVE-2019-17267
Reporter: lufeirider

Fix included in:

  • 2.9.10
  • 2.8.11.5
  • does not affect 2.10.0 and later

(*) See https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062 for more on general problem type

Metadata

Metadata

Assignees

No one assigned

    Labels

    CVEIssues related to public CVEs (security vuln reports)

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions