1
Candidate: CVE-2017-9787
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9787
5
http://struts.apache.org/docs/s2-049.html
6
https://lists.apache.org/thread.html/3795c4dd46d9ec75f4a6eb9eca11c11edd3e796c6c1fd7b17b5dc50d@%3Cannouncements.struts.apache.org%3E
8
When using a Spring AOP functionality to secure Struts actions it is
9
possible to perform a DoS attack. Solution is to upgrade to Apache Struts
10
version 2.5.12 or 2.3.33.
13
sarnold> Debian triage said this is specific to struts 2
19
Patches_libstruts1.2-java:
20
upstream_libstruts1.2-java: not-affected
21
precise/esm_libstruts1.2-java: DNE
22
trusty_libstruts1.2-java: not-affected
23
vivid/ubuntu-core_libstruts1.2-java: DNE
24
xenial_libstruts1.2-java: DNE
25
yakkety_libstruts1.2-java: DNE
26
zesty_libstruts1.2-java: DNE
27
devel_libstruts1.2-java: DNE