A vulnerability has been discovered in Apache Commons BCEL, which can lead to remote code execution.
Package | dev-java/bcel on all architectures |
---|---|
Affected versions | < 6.6.0 |
Unaffected versions | >= 6.6.0 |
The Byte Code Engineering Library (Apache Commons BCEL™) is intended to give users a convenient way to analyze, create, and manipulate (binary) Java class files (those ending with .class).
A vulnerability has been discovered in U-Boot tools. Please review the CVE identifier referenced below for details.
Please review the referenced CVE identifier for details.
There is no known workaround at this time.
All Apache Commons BCEL users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-java/bcel-6.6.0"
Release date
May 05, 2024
Latest revision
May 05, 2024: 1
Severity
normal
Exploitable
remote
Bugzilla entries