RHSA-2020:1308LowCVSS 7.3
Red Hat Security Advisory: Red Hat Virtualization Engine security, bug fix 4.3.9
🔗 CVE IDs covered (2)
📋 Description
CVE-2019-10086 — apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default CVE-2019-17195 — nimbus-jose-jwt: Uncaught exceptions while parsing a JWT
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2020:1308
- externalhttps://access.redhat.com/security/updates/classification/#low
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1752522
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1764791
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1767483
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1789737
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1792874
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1797496
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1801310
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1808038
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1808607
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1809470
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1810527
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1308.json