Details

      Description

      XStream <= 1.4.6 is vulnerable to arbitrary code execution when deserializing objects.

      See also https://web.liferay.com/group/customer/products/portal/security-vulnerability/lsv-99

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              bryan.engler Bryan Engler
              Reporter:
              juan.gonzalez Juan Gonzalez (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved:

                  Packages

                  Version Package
                  6.1.X EE
                  6.2.X EE