CVE-2014-0792
Published: 17 January 2014
Sonatype Nexus 1.x and 2.x before 2.7.1 allows remote attackers to create arbitrary objects and execute arbitrary code via unspecified vectors related to unmarshalling of unintended Object types.
Notes
| Author | Note |
|---|---|
| sarnold |
I'm unclear on the relationship between Maven Indexer and Sonatype Nexus; so I'm marking maven-indexer as an involved package because I haven't seen any information to the contrary. More research is needed. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
maven-indexer
Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
| bionic |
Ignored
|
|
| cosmic |
Ignored
|
|
| disco |
Does not exist
|
|
| lucid |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Ignored
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|