Debian DSA-2856-1 : libcommons-fileupload-java - denial of service
High Nessus Plugin ID 72401
The remote Debian host is missing a security-related update.
It was discovered that the Apache Commons FileUpload package for Java could enter an infinite loop while processing a multipart request with a crafted Content-Type, resulting in a denial-of-service condition.
Upgrade the libcommons-fileupload-java packages. For the oldstable distribution (squeeze), this problem has been fixed in version 1.2.2-1+deb6u2. For the stable distribution (wheezy), this problem has been fixed in version 1.2.2-1+deb7u2.