Expand my Community achievements bar.

SOLVED

Hot fix 6445 on AEM 5.6.1

Avatar

Level 1
Level 1
2/26/16 9:16:49 AM

According to the security bulletin[1] released 02/09/2016,  hot fix 6445 for CVE-2016-0956 resolves the vulnerability "affecting Apache Sling Servlets Post 2.3.6 and earlier versions."  But the hotfix for AEM 5.6.1 provides version 2.3.2-R1501241-B002.  Is this bundle still vulnerable, as the wording of the bulletin seems to suggest?

The bundle filename is:  org.apache.sling.servlets.post-2.3.2-R1501241-B002.jar

Thanks.

[1] https://helpx.adobe.com/security/products/experience-manager/apsb16-05.html

Views

565

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Level 10
Level 10
2/26/16 10:52:17 AM

All I can say is 2.3.2-R1501241-B002 is right one for 5.6.1 & you will be safe from threat.  Agree description needs to tweaked per aem version please file a separate ticket.

View solution in original post

Views

518

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
1 Reply

Avatar

Correct answer by
Level 10
Level 10
2/26/16 10:52:17 AM

All I can say is 2.3.2-R1501241-B002 is right one for 5.6.1 & you will be safe from threat.  Agree description needs to tweaked per aem version please file a separate ticket.

Views

519

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply