CVE-2014-3558
Published: 30 September 2014
ReflectionHelper (org.hibernate.validator.util.ReflectionHelper) in Hibernate Validator 4.1.0 before 4.2.1, 4.3.x before 4.3.2, and 5.x before 5.1.2 allows attackers to bypass Java Security Manager (JSM) restrictions and execute restricted reflection calls via a crafted application.
Priority
Status
Package | Release | Status |
---|---|---|
libhibernate-validator-java Launchpad, Ubuntu, Debian |
vivid |
Ignored
(end of life)
|
artful |
Ignored
(end of life)
|
|
bionic |
Not vulnerable
(4.2.1-2)
|
|
cosmic |
Not vulnerable
(4.2.1-2)
|
|
disco |
Not vulnerable
(4.2.1-2)
|
|
lucid |
Ignored
(end of life)
|
|
precise |
Ignored
(end of life)
|
|
trusty |
Does not exist
(trusty was needed)
|
|
upstream |
Released
(4.2.1-2)
|
|
utopic |
Ignored
(end of life)
|
|
wily |
Ignored
(end of life)
|
|
xenial |
Not vulnerable
(4.2.1-2)
|
|
yakkety |
Ignored
(end of life)
|
|
zesty |
Ignored
(end of life)
|