RHSA-2022:4798-01 -- Redhat aopalliance, apache-commons-cli, apache-commons-codec, apache-commons-io, apache-commons-lang3, apache-commons-logging, atinject, cdi-api, geronimo-annotation, glassfish-el, google-guice, guava20, hawtjni, httpcomponents-client, httpcomponents-core, jansi, jboss-interceptors, jsoup, maven, plexus-cipher, plexus-classworlds, plexus-containers, plexus-interpolation, plexus-sec-dispatcher, plexus-utils, sisu, slf4j, jcl-over-slf4j| ID: oval:org.secpod.oval:def:506954 | Date: (C)2022-06-01 (M)2024-04-29 |
| Class: PATCH | Family: unix |
The Apache Maven Shared Utils project aims to be an improved functional replacement for plexus-utils in Maven. Security Fix: * maven-shared-utils: Command injection via Commandline class For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
| Platform: |
| Red Hat Enterprise Linux 8 |
| Product: |
| aopalliance |
| apache-commons-cli |
| apache-commons-codec |
| apache-commons-io |
| apache-commons-lang3 |
| apache-commons-logging |
| atinject |
| cdi-api |
| geronimo-annotation |
| glassfish-el |
| google-guice |
| guava20 |
| hawtjni |
| httpcomponents-client |
| httpcomponents-core |
| jansi |
| jboss-interceptors |
| jsoup |
| maven |
| plexus-cipher |
| plexus-classworlds |
| plexus-containers |
| plexus-interpolation |
| plexus-sec-dispatcher |
| plexus-utils |
| sisu |
| slf4j |
| jcl-over-slf4j |
