RHSA-2025:14126: Important: SUSE Liberty Linux security update for apache-commons-collections
Update Advisories for SUSE Liberty Linux
suse-liberty-linux-updates at lists.suse.com
Fri Oct 17 15:07:48 UTC 2025
# security update for apache-commons-collections
Announcement ID: RHSA-2025:14126
Rating: Important
Cross-References:
* CVE-2025-52999
CVSS scores:
* CVE-2025-52999 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-52999 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products:
* SUSE Liberty Linux 8
An update that solves one vulnerability can now be installed.
## Description:
This security update provides a functional equivalent of RHSA-2025:14126.
The original Red Hat(R) advisory is available from the Red Hat web site at
https://access.redhat.com/errata/RHSA-2025:14126.
## Package List:
* SUSE Liberty Linux 8:
* apache-commons-collections 3.2.2-10.module+el8.10.0+20993+d0f024b0
* apache-commons-lang 2.6-21.module+el8.10.0+20993+d0f024b0
* apache-commons-net 3.6-3.module+el8.10.0+20993+d0f024b0
* bea-stax-api 1.2.0-16.module+el8.10.0+20993+d0f024b0
* fasterxml-oss-parent 69-1.module+el8.10.0+23380+f6e7434b
* glassfish-fastinfoset 1.2.13-9.module+el8.10.0+20993+d0f024b0
* glassfish-jaxb-api 2.2.12-8.module+el8.10.0+21035+a01f6469
* glassfish-jaxb-core 2.2.11-12.module+el8.10.0+20993+d0f024b0
* glassfish-jaxb-runtime 2.2.11-12.module+el8.10.0+20993+d0f024b0
* glassfish-jaxb-txw2 2.2.11-12.module+el8.10.0+20993+d0f024b0
* jackson-annotations 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-bom 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-core 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-databind 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-jaxrs-json-provider 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-jaxrs-providers 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-module-jaxb-annotations 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-modules-base 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jackson-parent 2.19.1-1.module+el8.10.0+23380+f6e7434b
* jakarta-commons-httpclient 3.1-28.module+el8.10.0+20993+d0f024b0
* javassist 3.18.1-8.module+el8.10.0+20993+d0f024b0
* javassist-javadoc 3.18.1-8.module+el8.10.0+20993+d0f024b0
* pki-servlet-engine 9.0.62-1.module+el8.10.0+21257+2b5308b5
* relaxngDatatype 2011.1-7.module+el8.10.0+20993+d0f024b0
* slf4j 1.7.25-4.module+el8.10.0+20993+d0f024b0
* slf4j-jdk14 1.7.25-4.module+el8.10.0+20993+d0f024b0
* stax-ex 1.7.7-8.module+el8.10.0+20993+d0f024b0
* velocity 1.7-24.module+el8.10.0+20993+d0f024b0
* xalan-j2 2.7.1-38.module+el8.10.0+20993+d0f024b0
* xerces-j2 2.11.0-34.module+el8.10.0+20993+d0f024b0
* xml-commons-apis 1.4.01-25.module+el8.10.0+20993+d0f024b0
* xml-commons-resolver 1.2-26.module+el8.10.0+20993+d0f024b0
* xmlstreambuffer 1.5.4-8.module+el8.10.0+20993+d0f024b0
* xsom 0-19.20110809svn.module+el8.10.0+20993+d0f024b0
## References:
* https://www.suse.com/security/cve/CVE-2025-52999.html
More information about the suse-liberty-linux-updates
mailing list