UbuntuUpdates.org

Package "htmlunit"

Name: htmlunit

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • GUI-Less browser for Java programs

Latest version: 2.8-1ubuntu2.1
Release: xenial (16.04)
Level: updates
Repository: universe

Links



Other versions of "htmlunit" in Xenial

Repository Area Version
base universe 2.8-1ubuntu2
security universe 2.8-1ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.8-1ubuntu2.1 2020-10-14 22:07:03 UTC

  htmlunit (2.8-1ubuntu2.1) xenial-security; urgency=medium

  * Fix FTBFS because of mime4j.
  * Ignore the dependency on maven-assembly-plugin and maven-antrun-plugin.
  * SECURITY UPDATE: Arbitrary code execution.
    - d/p/0001-disable-java-access-to-avoid-execution-of-arbitrary-.patch:
      disable java access to avoid execution of arbitrary (java) code.
    - CVE-2020-5529

 -- Eduardo Barretto <email address hidden> Fri, 09 Oct 2020 15:26:22 -0300

CVE-2020-5529 HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can



About   -   Send Feedback to @ubuntu_updates