Search results

Query:
Filters:	Content type Categories  LWN Feature article  Guest article  News item  Email item  Security alert  Security vulnerability  Kernel patch  Comment  Announcements  Briefs  Commerce  Development  Distributions  Front  Kernel  Legal  Letters  Press  Security  Select all  Select all
Order by:	relevance date

Search results

Red Hat security update to rh-maven35-apache-commons-collections4
([Security] Posted Oct 19, 2020 15:03 UTC (Mon) by ris )

CVE Names:         CVE-2015-7501 
=====================================================================

1. Summary:

An update for rh-maven35-apache-commons-collections4 is now available for
Red Hat Software Collections.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed

Red Hat security update to Red Hat OpenShift Enterprise 2.2.10
([Security] Posted Aug 25, 2016 16:16 UTC (Thu) by ris )

CVE Names:         CVE-2014-3577 CVE-2015-7501 CVE-2016-0788 
                   CVE-2016-0789 CVE-2016-0790 CVE-2016-0791 
                   CVE-2016-0792 CVE-2016-3721 CVE-2016-3722 
                   CVE-2016-3723 CVE-2016-3724 CVE-2016-3725 
                   CVE-2016-3726 CVE-2016-3727 
=====================================================================

1. Summary:

An update is now available

Mageia security update to apache-commons-collections
([Security] Posted Jan 14, 2016 16:02 UTC (Thu) by jake )

CVE: CVE-2015-7501

Description:
It was found that the Apache commons-collections library permitted code
execution when deserializing objects involving a specially constructed
chain of classes. A remote attacker could use this flaw to execute
arbitrary code with the permissions of the application using the
commons-collections library (CVE

Scientific Linux security update to jakarta-commons-collections
([Security] Posted Dec 22, 2015 17:30 UTC (Tue) by ris )

CVE-2015-7501
--

It was found that the Apache commons-collections library permitted code
execution when deserializing objects involving a specially constructed
chain of classes. A remote attacker could use this flaw to execute
arbitrary code with the permissions of the application using the commons-
collections library. (CVE-2015-7501

Oracle security update to jakarta-commons-collections
([Security] Posted Dec 22, 2015 16:54 UTC (Tue) by ris )

-2015-2671 Important: Oracle Linux 5 jakarta-commons-collections security update   
   Date : 
    	         Mon, 21 Dec 2015 10:46:05 -0800  
   Message-ID : 
    	         <567848ED.7020600@oracle.com>  
  Oracle Linux Security Advisory ELSA-2015-2671

 http://linux.oracle.com/errata/ELSA-2015-2671.html 

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
jakarta-commons-collections-3.2-2jpp.4.i386.rpm
jakarta-commons-collections-javadoc-3.2-2jpp.4.i386.rpm
jakarta-commons-collections-testframework-3.2-2jpp.4.i386.rpm
jakarta-commons-collections-testframework-javadoc-3.2-2jpp.4.i386.rpm
jakarta-commons-collections-tomcat5-3.2-2jpp.4.i386.rpm

x86_64:
jakarta-commons-collections-3.2-2jpp.4.x86_64.rpm
jakarta-commons-collections-javadoc-3.2-2jpp.4.x86_64.rpm
jakarta-commons-collections-testframework-3.2-2jpp.4.x86_64.rpm
jakarta-commons-collections-testframework-javadoc-3.2-2jpp.4.x86_64.rpm
jakarta-commons-collections-tomcat5-3.2-2jpp.4.x86_64.rpm

ia64:
jakarta-commons-collections-3.2-2jpp.4.ia64.rpm
jakarta-commons-collections-javadoc-3.2-2jpp.4.ia64.rpm
jakarta-commons-collections-testframework-3.2-2jpp.4.ia64.rpm
jakarta-commons-collections-testframework-javadoc-3.2-2jpp.4.ia64.rpm
jakarta-commons-collections-tomcat5-3.2-2jpp.4.ia64.rpm


SRPMS:
 http://oss.oracle.com/ol5/SRPMS-updates/jakarta-commons-c... 



Description of changes:

[0:3.2-2jpp.4]
- Fix Java object de-serialization vulnerability
- Resolves: CVE-2015-7501

Red Hat security update to jakarta-commons-collections
([Security] Posted Dec 21, 2015 16:25 UTC (Mon) by ris )

-2015:2671-01] Important: jakarta-commons-collections security update   
   Date : 
    	         Mon, 21 Dec 2015 06:13:45 +0000  
   Message-ID : 
    	         <201512210613.tBL6DjoI023685@int-mx10.intmail.prod.int.phx2.redhat.com>  
  -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: jakarta-commons-collections security update
Advisory ID:       RHSA-2015:2671-01
Product:           Red Hat Enterprise Linux
Advisory URL:       https://rhn.redhat.com/errata/RHSA-2015-2671.html 
Issue date:        2015-12-21
CVE Names:         CVE-2015-7501

Scientific Linux security update to jakarta-commons-collections
([Security] Posted Dec 1, 2015 17:23 UTC (Tue) by ris )

CVE-2015-7501
--

It was found that the Apache commons-collections library permitted code
execution when deserializing objects involving a specially constructed
chain of classes. A remote attacker could use this flaw to execute
arbitrary code with the permissions of the application using the commons-
collections library. (CVE-2015-7501

Scientific Linux security update to apache-commons-collections
([Security] Posted Dec 1, 2015 17:22 UTC (Tue) by ris )

CVE-2015-7501
--

It was found that the Apache commons-collections library permitted code
execution when deserializing objects involving a specially constructed
chain of classes. A remote attacker could use this flaw to execute
arbitrary code with the permissions of the application using the commons-
collections library. (CVE-2015-7501

Oracle security update to jakarta-commons-collections
([Security] Posted Dec 1, 2015 17:21 UTC (Tue) by ris )

-2015-2521 Important: Oracle Linux 6 jakarta-commons-collections security update   
   Date : 
    	         Mon, 30 Nov 2015 08:44:50 -0800  
   Message-ID : 
    	         <565C7D02.90804@oracle.com>  
  Oracle Linux Security Advisory ELSA-2015-2521

 http://linux.oracle.com/errata/ELSA-2015-2521.html 

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
jakarta-commons-collections-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-javadoc-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-testframework-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-testframework-javadoc-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-tomcat5-3.2.1-3.5.el6_7.noarch.rpm

x86_64:
jakarta-commons-collections-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-javadoc-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-testframework-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-testframework-javadoc-3.2.1-3.5.el6_7.noarch.rpm
jakarta-commons-collections-tomcat5-3.2.1-3.5.el6_7.noarch.rpm


SRPMS:
 http://oss.oracle.com/ol6/SRPMS-updates/jakarta-commons-c... 



Description of changes:

[0:3.2.1-3.5]
- Fix Java object de-serialization vulnerability
- Resolves: CVE-2015-7501

Oracle security update to apache-commons-collections
([Security] Posted Dec 1, 2015 17:20 UTC (Tue) by ris )

-2015-2522 Important: Oracle Linux 7 apache-commons-collections security update   
   Date : 
    	         Mon, 30 Nov 2015 08:44:13 -0800  
   Message-ID : 
    	         <565C7CDD.90602@oracle.com>  
  Oracle Linux Security Advisory ELSA-2015-2522

 http://linux.oracle.com/errata/ELSA-2015-2522.html 

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
apache-commons-collections-3.2.1-22.el7_2.noarch.rpm
apache-commons-collections-javadoc-3.2.1-22.el7_2.noarch.rpm
apache-commons-collections-testframework-3.2.1-22.el7_2.noarch.rpm
apache-commons-collections-testframework-javadoc-3.2.1-22.el7_2.noarch.rpm


SRPMS:
 http://oss.oracle.com/ol7/SRPMS-updates/apache-commons-co... 



Description of changes:

[3.2.1-22]
- Fix Java object de-serialization vulnerability
- Resolves: CVE-2015-7501

Red Hat security update to rh-java-common-apache-commons-collections
([Security] Posted Dec 1, 2015 16:56 UTC (Tue) by ris )

-2015:2523-01] Important: rh-java-common-apache-commons-collections security update   
   Date : 
    	         Mon, 30 Nov 2015 16:58:42 +0000  
   Message-ID : 
    	         <201511301658.tAUGwemv015564@int-mx09.intmail.prod.int.phx2.redhat.com>  
  -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: rh-java-common-apache-commons-collections security update
Advisory ID:       RHSA-2015:2523-01
Product:           Red Hat Software Collections
Advisory URL:       https://rhn.redhat.com/errata/RHSA-2015-2523.html 
Issue date:        2015-11-30
CVE Names:         CVE-2015-7501

Red Hat security update to jakarta-commons-collections
([Security] Posted Dec 1, 2015 16:53 UTC (Tue) by ris )

-2015:2521-01] Important: jakarta-commons-collections security update   
   Date : 
    	         Mon, 30 Nov 2015 16:56:34 +0000  
   Message-ID : 
    	         <201511301656.tAUGuVZB014418@int-mx09.intmail.prod.int.phx2.redhat.com>  
  -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: jakarta-commons-collections security update
Advisory ID:       RHSA-2015:2521-01
Product:           Red Hat Enterprise Linux
Advisory URL:       https://rhn.redhat.com/errata/RHSA-2015-2521.html 
Issue date:        2015-11-30
CVE Names:         CVE-2015-7501

Red Hat security update to apache-commons-collections
([Security] Posted Dec 1, 2015 16:51 UTC (Tue) by ris )

-2015:2522-01] Important: apache-commons-collections security update   
   Date : 
    	         Mon, 30 Nov 2015 16:57:38 +0000  
   Message-ID : 
    	         <201511301657.tAUGvZP6014951@int-mx09.intmail.prod.int.phx2.redhat.com>  
  -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: apache-commons-collections security update
Advisory ID:       RHSA-2015:2522-01
Product:           Red Hat Enterprise Linux
Advisory URL:       https://rhn.redhat.com/errata/RHSA-2015-2522.html 
Issue date:        2015-11-30
CVE Names:         CVE-2015-7501