RHSA-2022:4797-01 -- Redhat aopalliance, apache-commons-cli, apache-commons-codec, apache-commons-io, apache-commons-lang3, atinject, cdi-api, geronimo-annotation, google-guice, guava, httpcomponents-client, httpcomponents-core, jansi, jsoup, jsr-305-0, maven, plexus-cipher, plexus-classworlds, plexus-containers, plexus-interpolation, plexus-sec-dispatcher, plexus-utils, sisu, slf4j, jcl-over-slf4jID: oval:org.secpod.oval:def:506957 | Date: (C)2022-06-01 (M)2024-04-29 |
Class: PATCH | Family: unix |
The Apache Maven Shared Utils project aims to be an improved functional replacement for plexus-utils in Maven. Security Fix: * maven-shared-utils: Command injection via Commandline class For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
aopalliance |
apache-commons-cli |
apache-commons-codec |
apache-commons-io |
apache-commons-lang3 |
atinject |
cdi-api |
geronimo-annotation |
google-guice |
guava |
httpcomponents-client |
httpcomponents-core |
jansi |
jsoup |
maven |
plexus-cipher |
plexus-classworlds |
plexus-containers |
plexus-interpolation |
plexus-sec-dispatcher |
plexus-utils |
sisu |
slf4j |
jcl-over-slf4j |