BestHub
Sign in
Tag

security patch

1 views collected around this technical thread.

Java Architecture Diary
Java Architecture Diary
Jun 16, 2025 · Information Security

Why Spring Framework’s RFD Bug Lets Attackers Download Malicious Files—and How to Patch It

Spring’s latest security advisory reveals a critical Reflection File Download (RFD) vulnerability affecting multiple Spring Framework versions, allowing crafted requests to force users to download malicious files, and provides detailed conditions, unaffected scenarios, version impact, and recommended remediation steps.

Content-DispositionRFD vulnerabilitySpring Boot
0 likes · 5 min read
Why Spring Framework’s RFD Bug Lets Attackers Download Malicious Files—and How to Patch It
DevOps Operations Practice
DevOps Operations Practice
Aug 18, 2024 · Information Security

Critical Windows TCP/IP Vulnerability (CVE‑2024‑38063) Allows Remote Code Execution via IPv6

Microsoft has disclosed a critical Windows TCP/IP stack vulnerability (CVE‑2024‑38063) with a CVSS 9.8 score that enables remote code execution through specially crafted IPv6 packets, is wormable, and can spread laterally across internal networks, prompting immediate patch installation or IPv6 disabling.

CVE-2024-38063IPv6Remote Code Execution
0 likes · 3 min read
Critical Windows TCP/IP Vulnerability (CVE‑2024‑38063) Allows Remote Code Execution via IPv6
Java Architecture Diary
Java Architecture Diary
Aug 16, 2024 · Information Security

Fix Critical Spring Framework CVE-2024-38808 & CVE-2024-38809

Spring Framework versions up to 5.3.38 and certain Spring Boot releases contain two severe DoS vulnerabilities (CVE-2024-38808 and CVE-2024-38809); this guide explains their impact, affected products, and provides detailed mitigation steps, including version upgrades and configuration changes to secure your applications.

Backend DevelopmentCVE-2024-38808CVE-2024-38809
0 likes · 6 min read
Fix Critical Spring Framework CVE-2024-38808 & CVE-2024-38809
Java Tech Enthusiast
Java Tech Enthusiast
Feb 17, 2024 · Information Security

Linux Kernel SandBox Mode (SBM) Patch Enhances Memory Safety

Huawei engineer Petr Tesarik submitted a Linux kernel patch that adds SandBox Mode (SBM), an API confining kernel code to predefined memory regions, using hardware paging and CPU privilege levels to isolate components, detect out‑of‑bounds accesses, recover from violations, terminate the sandbox and return error codes such as -EFAULT, enabling continued execution.

Linux kernelMemory SafetySandbox
0 likes · 2 min read
Linux Kernel SandBox Mode (SBM) Patch Enhances Memory Safety
Java Architect Essentials
Java Architect Essentials
Nov 22, 2023 · Information Security

Apache ActiveMQ Remote Code Execution Vulnerability and Mitigation for JDK8/Docker Environments

The article explains the critical remote code execution vulnerability discovered in Apache ActiveMQ, lists the affected and safe versions, and provides practical mitigation steps—including upgrading, network restrictions, and a custom Docker image for JDK8 users—to protect systems from exploitation.

Apache ActiveMQDockerJDK8
0 likes · 4 min read
Apache ActiveMQ Remote Code Execution Vulnerability and Mitigation for JDK8/Docker Environments
Code Ape Tech Column
Code Ape Tech Column
Nov 14, 2022 · Information Security

Nacos Permission Bypass Vulnerability and Its Fix

This article explains a permission‑bypass vulnerability in Nacos 1.4.2 caused by a specific User‑Agent header, demonstrates how to reproduce it, and provides step‑by‑step instructions for fixing the issue by upgrading to version 2.1.1 or adjusting configuration files.

NacosPermission Bypassconfiguration
0 likes · 6 min read
Nacos Permission Bypass Vulnerability and Its Fix
Laravel Tech Community
Laravel Tech Community
Aug 29, 2022 · Information Security

Memory Safety Vulnerability in Firefox (CVE-2022-38478) and Fix Recommendations

A memory‑safety vulnerability (CVE‑2022‑38478) affecting Firefox 103, Firefox ESR 102.1 and 91.12 can leak sensitive data and enable arbitrary code execution, and users should upgrade to Firefox 104 or the latest ESR releases to mitigate the issue.

CVE-2022-38478FirefoxMemory Safety
0 likes · 3 min read
Memory Safety Vulnerability in Firefox (CVE-2022-38478) and Fix Recommendations
Java Architecture Diary
Java Architecture Diary
May 24, 2022 · Information Security

Fastjson ≤1.2.80 Deserialization Flaw Enables Remote Code Execution – How to Protect Your Systems

A critical deserialization flaw in Fastjson versions up to 1.2.80 allows attackers to bypass autoType restrictions and achieve remote code execution, affecting Spring Cloud Alibaba Sentinel users, with mitigation steps and version-specific fixes detailed for both open‑source and commercial releases.

Remote Code ExecutionSpring Cloud Alibaba Sentinelcommercial
0 likes · 2 min read
Fastjson ≤1.2.80 Deserialization Flaw Enables Remote Code Execution – How to Protect Your Systems
Code Ape Tech Column
Code Ape Tech Column
Mar 5, 2022 · Information Security

Spring Cloud Gateway Vulnerabilities CVE-2022-22946 and CVE-2022-22947: Description, Impact, and Mitigation

This article explains two critical Spring Cloud Gateway vulnerabilities (CVE-2022-22946 and CVE-2022-22947), detailing their causes, affected versions, potential impact, and recommended remediation steps such as upgrading to safe releases or disabling the vulnerable actuator endpoint.

CVERemote Code ExecutionSpring Boot
0 likes · 4 min read
Spring Cloud Gateway Vulnerabilities CVE-2022-22946 and CVE-2022-22947: Description, Impact, and Mitigation
Aikesheng Open Source Community
Aikesheng Open Source Community
Dec 15, 2021 · Information Security

How to Patch the Apache Log4j2 Vulnerability in Dble

This guide explains four remediation methods for the Log4j2 security flaw in Dble, including upgrading to Log4j2 2.16.0, adding a configuration property, adjusting JVM parameters for older versions, and setting a system environment variable, with detailed step‑by‑step instructions and code snippets.

DBLEJavaVulnerability Mitigation
0 likes · 6 min read
How to Patch the Apache Log4j2 Vulnerability in Dble
Java Architect Essentials
Java Architect Essentials
Dec 10, 2021 · Information Security

Mitigating the Critical Apache Log4j2 Vulnerability (CVE‑2021‑44228)

The article explains the severe Log4j2 remote‑code‑execution vulnerability affecting versions 2.0 to 2.14.1, provides the official patch link, and lists practical temporary mitigation steps such as JVM flags, configuration changes, environment variables, and network isolation to protect Java applications.

CVE-2021-44228JavaMitigation
0 likes · 3 min read
Mitigating the Critical Apache Log4j2 Vulnerability (CVE‑2021‑44228)
Top Architect
Top Architect
Dec 10, 2021 · Information Security

Log4j 2 Vulnerability Overview and Mitigation Measures

The article explains the Log4j 2 remote code execution vulnerability affecting versions up to 2.14.1, describes its impact, lists affected components, and provides both permanent upgrade instructions and urgent mitigation steps such as JVM flags, configuration changes, and environment variable settings.

JavaMitigationRemote Code Execution
0 likes · 3 min read
Log4j 2 Vulnerability Overview and Mitigation Measures
Laravel Tech Community
Laravel Tech Community
Jul 22, 2021 · Operations

Apache Ant 1.9.16 and 1.10.11 Released – Key Changes and Security Fixes

Apache Ant has released versions 1.9.16 and 1.10.11, with 1.9.x focusing on bug fixes for Java 5+ environments and 1.10.x adding new features for Java 8+, both addressing a potential denial‑of‑service vulnerability and including updates such as AntUnit 1.4.1 and fixes for parallel task NPEs, OutOfMemory errors, and Maven Central packaging.

Apache AntJavaRelease Notes
0 likes · 3 min read
Apache Ant 1.9.16 and 1.10.11 Released – Key Changes and Security Fixes
Efficient Ops
Efficient Ops
Apr 19, 2018 · Information Security

How to Detect and Mitigate Oracle WebLogic CVE‑2018‑2628 Remote Code Execution

Oracle's April Critical Patch Update fixes a high‑severity remote code execution vulnerability (CVE‑2018‑2628) in WebLogic, and this guide explains the affected versions, impact scope, detection methods, and both official and interim protection measures using NIPS and next‑generation firewalls.

CVE-2018-2628NIPSRemote Code Execution
0 likes · 9 min read
How to Detect and Mitigate Oracle WebLogic CVE‑2018‑2628 Remote Code Execution