Oracle Errata System
Oracle Linux
5.3
2021-09-09T12:48:10
ELSA-2015-1695: jakarta-taglibs-standard security update (IMPORTANT)
Oracle Linux 6
Oracle Linux 7
[0:1.1.1-11.7]
- Gracefully handle parsers without FSP support (e.g. Java 5 GCJ)
- Resolves: CVE-2015-0254
[0:1.1.1-11.6]
- Prevent XXE and RCE in JSTL XML tags
- Apply correction for previous CVE-2015-0254 patch (prevent XXE in <x:transform>)
- Resolves: CVE-2015-0254
[0:1.1.1-11.5]
- Prevent XXE and RCE in JSTL XML tags
- Resolves: CVE-2015-0254
IMPORTANT
Copyright 2015 Oracle, Inc.
CVE-2015-0254
jakarta-taglibs-standard
jakarta-taglibs-standard-javadoc
oraclelinux-release
72f97b74ec551f03
^6
x86_64
0:1.1.1-11.7.el6_7
i686
sparc64
^7
aarch64
0:1.1.2-14.el7_1