https://bugzilla.redhat.com/show_bug.cgi?id=1942635 Bug 1942635 depends on bug 1942636, which changed state.
Bug 1942636 Summary: CVE-2021-21349 xstream: SSRF can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1942636
What |Removed |Added ---------------------------------------------------------------------------- Status|ON_QA |CLOSED Resolution|--- |ERRATA