Описание
ELSA-2022-8958: bcel security update (IMPORTANT)
[0:5.2-19]
- Fix arbitrary bytecode produced via out-of-bounds writing
- Resolves: CVE-2022-42920
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
bcel
5.2-19.el7_9
bcel-javadoc
5.2-19.el7_9
Oracle Linux x86_64
bcel
5.2-19.el7_9
bcel-javadoc
5.2-19.el7_9
Связанные CVE
Связанные уязвимости
Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0.
Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0.
Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0.
Apache Commons BCEL has a number of APIs that would normally only allo ...
