CVE-2011-2731
Publication date 5 December 2012
Last updated 24 July 2024
Ubuntu priority
Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via a crafted thread.
Status
Package | Ubuntu Release | Status |
---|---|---|
libspring-security-2.0-java | ||
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |