Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 501
Alerts This Week
Warning Icon 1 501

Fedora 24: 2016-005ac9cfd5 Moderate: Spring AMQP Remote Code Execution

fedora
Calendar Grey April 17, 2016
Dist Fedora Esm H88
Stay informed about Fedora 24's recent security amendment for springframework-amqp, which targets vulnerabilities related to potential remote code execution threats.
Security fix for CVE-2016-2173

Summary

The Spring AMQP project applies core Spring concepts to the

development of AMQP-based messaging solutions. It provides

a "template" as a high-level abstraction for sending and

receiving messages. It also provides support for Message

driven POJOs with a "listener container". These libraries

facilitate management of AMQP resources while promoting the

use of dependency injection and declarative configuration.

In all of these cases, you will see similarities to the

JMS support in the Spring Framework.

Update Information:

Security fix for CVE-2016-2173

Change Log

References


[ 1 ] Bug #1326205 - CVE-2016-2173 springframework-amqp: remote code execution https://bugzilla.redhat.com/show_bug.cgi?id=1326205

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update springframework-amqp' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: springframework-amqp
Product: Fedora 24
Version: 1.3.9
Release: 4.fc24
Summary: Support for Spring programming model with AMQP

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.