MGASA-2021-0148 - Updated htmlunit packages fix security vulnerability

Publication date: 21 Mar 2021
URL: https://advisories.mageia.org/MGASA-2021-0148.html
Type: security
Affected Mageia releases: 7
CVE: CVE-2020-5529

It was discovered that HtmlUnit incorrectly initialized Rhino engine. An
Attacker could possibly use this issue to execute arbitrary Java code
(CVE-2020-5529).

References:
- https://bugs.mageia.org/show_bug.cgi?id=27167
- https://ubuntu.com/security/notices/USN-4584-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5529

SRPMS:
- 7/core/htmlunit-2.23-2.1.mga7