1
Candidate: CVE-2012-0391
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0391
5
http://struts.apache.org/2.x/docs/s2-008.html
7
The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets
8
parameter values as OGNL expressions during certain exception handling for
9
mismatched data types of properties, which allows remote attackers to
10
execute arbitrary Java code via a crafted parameter.
14
https://issues.apache.org/jira/browse/WW-3668
19
Patches_libstruts1.2-java:
20
upstream_libstruts1.2-java: released (2.2.3.1)
21
hardy_libstruts1.2-java: ignored (reached end-of-life)
22
lucid_libstruts1.2-java: ignored (reached end-of-life)
23
maverick_libstruts1.2-java: ignored (reached end-of-life)
24
natty_libstruts1.2-java: ignored (reached end-of-life)
25
oneiric_libstruts1.2-java: ignored (reached end-of-life)
26
precise_libstruts1.2-java: ignored (reached end-of-life)
27
precise/esm_libstruts1.2-java: DNE (precise was needed)
28
quantal_libstruts1.2-java: ignored (reached end-of-life)
29
raring_libstruts1.2-java: ignored (reached end-of-life)
30
saucy_libstruts1.2-java: ignored (reached end-of-life)
31
trusty_libstruts1.2-java: needed
32
utopic_libstruts1.2-java: ignored (reached end-of-life)
33
vivid_libstruts1.2-java: DNE
34
vivid/stable-phone-overlay_libstruts1.2-java: DNE
35
vivid/ubuntu-core_libstruts1.2-java: DNE
36
wily_libstruts1.2-java: DNE
37
xenial_libstruts1.2-java: DNE
38
yakkety_libstruts1.2-java: DNE
39
zesty_libstruts1.2-java: DNE
40
artful_libstruts1.2-java: DNE
41
bionic_libstruts1.2-java: DNE
42
devel_libstruts1.2-java: DNE