Jython prior to 2.7.1rc1 allows malicious users to execute arbitrary code via a crafted serialized PyFunction object.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jython project jython 2.7.0 |
||
debian debian linux 8.0 |
Out of 284 flaws, 33 are rated critical. Big Red admins have big patches ahead Thought Patch Tuesday was a load? You gotta check out this Oracle mega-advisory, then
Oracle admins, here's your first critical patch advisory for 2019, and it's a doozy: a total of 284 vulnerabilities patched across Big Red's product range, and 33 of them are rated “critical”. We hope your support contracts are up-to-date to receive these fixes. The full list is here, and with so much to choose from, The Register will work through the top-rated bugs. Oracle Communications Applications (OCA) is home to nine of the vulnerabilities in various components: Oracle E-Business' Perf...