ELSA-2022-1541

Опубликовано: 29 апр. 2022

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2022-1541: maven-shared-utils security update (IMPORTANT)

[0.4-4]

Fix commandline injection vulnerability
Resolves: rhbz#2068651

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

maven-shared-utils

0.4-4.el7_9

maven-shared-utils-javadoc

0.4-4.el7_9

Oracle Linux x86_64

maven-shared-utils

0.4-4.el7_9

maven-shared-utils-javadoc

0.4-4.el7_9

Связанные CVE

CVE-2022-29599

Ссылки на источники

Связанные уязвимости

CVE-2022-29599

CVSS3: 9.8

ubuntu

около 3 лет назад

In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.

CVE-2022-29599

CVSS3: 9.8

redhat

около 5 лет назад

In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.

CVE-2022-29599

CVSS3: 9.8

nvd

около 3 лет назад

In Apache Maven maven-shared-utils prior to version 3.3.3, the Commandline class can emit double-quoted strings without proper escaping, allowing shell injection attacks.

CVE-2022-29599

CVSS3: 9.8

debian

около 3 лет назад

In Apache Maven maven-shared-utils prior to version 3.3.3, the Command ...

ROS-20240503-19

CVSS3: 9.8

redos

около 1 года назад

Уязвимость maven-shared-utils