Ubuntu
libxstream-java package

  1. Xenial (16.04)
  2. Bug #1780844
  3. Comment #9

Comment 9 for bug 1780844

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libxstream-java - 1.4.7-1ubuntu0.1

---------------
libxstream-java (1.4.7-1ubuntu0.1) trusty-security; urgency=medium

  * SECURITY UPDATE: handle void type class (LP: #1780844)
    - d/p/CVE-2017-7957.patch: Prevent deserialization of void.
    - CVE-2017-7957

 -- Dan Streetman <email address hidden> Mon, 09 Jul 2018 15:29:05 -0400