CVE 2017-9787
When using a Spring AOP functionality to secure Struts actions it is possible to perform a DoS attack. Solution is to upgrade to Apache Struts version 2.5.12 or 2.3.33.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MLIST: [announcements] 201707...
- CONFIRM: http://struts.apache.o...
- BID: 99562
- MLIST: [announcements] 201708...
- SECTRACK: 1039115
- CONFIRM: http://www.oracle.com/...
- CONFIRM: https://security.netap...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)