You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@servicemix.apache.org by "Krzysztof Sobkowiak (JIRA)" <ji...@apache.org> on 2016/01/08 18:02:40 UTC

[jira] [Updated] (SM-2806) Ensure ServiceMix uses Apache Commons Collections 3.2.2

     [ https://issues.apache.org/jira/browse/SM-2806?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Krzysztof Sobkowiak updated SM-2806:
------------------------------------
    Fix Version/s: 7.0.0
                   7.0.0.M1
                   6.1.1
                   5.6.0
                   5.5.3

> Ensure ServiceMix uses Apache Commons Collections 3.2.2
> -------------------------------------------------------
>
>                 Key: SM-2806
>                 URL: https://issues.apache.org/jira/browse/SM-2806
>             Project: ServiceMix
>          Issue Type: Bug
>          Components: assemblies
>            Reporter: Krzysztof Sobkowiak
>            Assignee: Krzysztof Sobkowiak
>             Fix For: 5.5.3, 5.6.0, 6.0.3, 6.1.1, 7.0.0.M1, 7.0.0
>
>
> This version contains a patch for a recently reported [object de-serialization vulnerability](https://blogs.apache.org/foundation/entry/apache_commons_statement_to_widespread).
> cfr: http://servicemix.396122.n5.nabble.com/ANN-Apache-ServiceMix-6-0-2-released-tp5723299p5723339.html



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)