Red Hat Bugzilla – Bug 1017459
resteasy-base contains known vulnerable components
Last modified: 2014-11-09 18:06:09 EST
The victims project maintains a database of known vulnerable components. A victims scan on resteasy-base components shows that resteasy-base-jettison-provider.jar is a known vulnerable artifact as reported in CVE 2013-0818. The details of this CVE can be found in bug #785631.
Recommend upgrading resteasy-base to 2.3.3 or later.
Rebased to 2.3.5-1
Changes committed to git:
Author: Ade Lee <email@example.com>
Date: Thu Oct 24 21:49:49 2013 -0400
# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.0 Beta (Maipo)
# rpm -q resteasy-base
This request was resolved in Red Hat Enterprise Linux 7.0.
Contact your manager or support representative in case you have further questions about the request.