org.springframework.core.serializer.DefaultDeserializer in Spring AMQP before 1.5.5 allows remote attackers to execute arbitrary code.
References
Link | Resource |
---|---|
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182551.html | Patch Third Party Advisory |
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182850.html | Patch Third Party Advisory |
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/182959.html | Patch Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1326205 | Issue Tracking Patch |
https://pivotal.io/security/cve-2016-2173 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2017-04-21T20:00:00
Updated: 2017-04-21T19:57:01
Reserved: 2016-01-29T00:00:00
Link: CVE-2016-2173
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-04-21T20:59:00.510
Modified: 2020-05-28T19:17:02.300
Link: CVE-2016-2173
JSON object: View
Redhat Information
No data.
CWE