File _patchinfo of Package patchinfo.4915
<patchinfo incident="4915"> <issue id="920813" tracker="bnc">VUL-0: CVE-2015-0254: jakarta-taglibs-standard: XXE and RCE via XSL extension in JSTL XML tags</issue> <issue id="2015-0254" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>pmonrealgonzalez</packager> <description>This update for jakarta-taglibs-standard fixes the following issues: - CVE-2015-0254: Apache Standard Taglibs allowed remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension in a (1) x:parse or (2) x:transform JSTL XML tag. (bsc#920813) </description> <summary>Security update for jakarta-taglibs-standard</summary> </patchinfo>
