Ubuntu Security Update USN-5805-1: Apache Maven vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,827
Reaction score
94
Credits
-1,257
It was discovered that Apache Maven followed repositories that are defined in a dependency’s Project Object Model (pom) even if the repositories weren't encryptedh (http protocol). An attacker could use this vulnerability to take over a repository, execute arbitrary code or cause a denial of service.

Continue reading...
 


Follow Linux.org

Members online


Top