Michael Lazin via plug on 12 Apr 2022 18:59:28 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] Fwd: Apache Releases Security Advisory for Struts 2

This caused Experian to be compromised long ago and this is a common Apache framework.  Since it is open source and common I thought this may be of interest to people on the list.

Thanks,

Michael 

--- Forwarded message ---------
From: US-CERT <US-CERT@messages.cisa.gov>
Date: Tue, Apr 12, 2022 at 9:18 PM
Subject: Apache Releases Security Advisory for Struts 2
To: <microlaser@gmail.com>


Cybersecurity and Infrastructure Security Agency (CISA) - Defend Today, Secure Tomorrow

You are subscribed to Cybersecurity Advisories for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.

04/12/2022 07:20 PM EDT

Original release date: April 12, 2022

The Apache Software Foundation has released a security advisory to address a vulnerability in Struts in the version range 2.0.0 to 2.5.29. An attacker could exploit this vulnerability to take control of an affected system.  

CISA encourages users and administrators to review Apache’s security advisory S2-062 and upgrade to the latest released version.

This product is provided subject to this Notification and this Privacy & Use policy.

This email was sent to microlaser@gmail.com using GovDelivery Communications Cloud, on behalf of: Cybersecurity and Infrastructure Security Agency · 707 17th St, Suite 4000 · Denver, CO 80202 GovDelivery logo
--
Michael Lazin

.. τὸ γὰρ αὐτὸ νοεῖν ἐστίν τε καὶ εἶναι.
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug