Follow Slashdot stories on Twitter


Forgot your password?
Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Submission + - Vulnerability In Java Commons Library Leads to Hundreds of Insecure Applications (

An anonymous reader writes: What Do WebLogic, WebSphere, JBoss, Jenkins, OpenNMS, and Your Application Have in Common? This Vulnerability.

The most underrated, underhyped vulnerability of 2015 has recently come to my attention, and I’m about to bring it to yours. No one gave it a fancy name, there were no press releases, nobody called Mandiant to come put out the fires. In fact, even though proof of concept code was released OVER 9 MONTHS AGO, none of the products mentioned in the title of the blog post have been patched, along with many more. In fact no patch is available for the Java library containing the vulnerability. In addition to any commercial products that are vulnerable, this also affects many custom applications.

For full details see the original blog post at

Submission + - Edward Snowden interviewed in Moscow, the story so far.

Alsn writes: Swedish newspaper Dagens Nyheter went to Moscow and spoke for 5 hours with Edward Snowden. The article (translation provided by DN itself) discusses the journey so far, from before the leaks through living in Russia today. The article is quite lengthy, but nevertheless provides an insight into the thoughts of a person effectively in exile yet still able to speak, which also happens to be one of many topics touched upon.

The first version always gets thrown away.