LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis: Important: apache-commons-beanutils security update
Advisory ID:       SLSA-2020:0194-1
Issue Date:        2020-01-21
CVE Numbers:       CVE-2019-10086
--

Security Fix(es):

* apache-commons-beanutils: does not suppresses the class property in
PropertyUtilsBean by default (CVE-2019-10086)
--

SL7
  noarch
    apache-commons-beanutils-1.8.3-15.el7_7.noarch.rpm
    apache-commons-beanutils-javadoc-1.8.3-15.el7_7.noarch.rpm

- Scientific Linux Development Team