[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[Spacewalk-list] xstream CVE-2017-7957



The xstream package that is pulled in with Spacewalk 2.6 is vulnerable
to this.  Is there an upgraded package anywhere that anyone knows about?  

Not sure what to do with some of the old jpackage packages that are all
Spacewalk dependencies.....more and  more of these are getting flagged
by security scanners. 

Anybody else have any thoughts on this?  Anybody else having a harder
and harder time with vulnerabilities being flagged on Spacewalk?


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]