--
---
You received this message because you are subscribed to the Google Groups "Folly: the Facebook Open-source LibrarY" group.
To unsubscribe from this group and stop receiving emails from it, send an email to facebook-foll...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/facebook-folly/4cd7503d-d3cd-40a5-9ec2-fd7d58daf2b1n%40googlegroups.com.
The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain crafted OpenJPA objects, which makes it easier for remote attackers to execute arbitrary code by creating a serialized object and leveraging improperly secured server programs.
--
---
You received this message because you are subscribed to the Google Groups "Folly: the Facebook Open-source LibrarY" group.
To unsubscribe from this group and stop receiving emails from it, send an email to facebook-foll...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/facebook-folly/4cd7503d-d3cd-40a5-9ec2-fd7d58daf2b1n%40googlegroups.com.
The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain crafted OpenJPA objects, which makes it easier for remote attackers to execute arbitrary code by creating a serialized object and leveraging improperly secured server programs.
--
---
You received this message because you are subscribed to the Google Groups "Folly: the Facebook Open-source LibrarY" group.
To unsubscribe from this group and stop receiving emails from it, send an email to facebook-foll...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/facebook-folly/4cd7503d-d3cd-40a5-9ec2-fd7d58daf2b1n%40googlegroups.com.