Hot fix 6445 on AEM 5.6.1 | Community
Skip to main content
D
down_stream
New Participant
February 26, 2016
Solved

Hot fix 6445 on AEM 5.6.1

  • February 26, 2016
  • 1 reply
  • 873 views

According to the security bulletin[1] released 02/09/2016,  hot fix 6445 for CVE-2016-0956 resolves the vulnerability "affecting Apache Sling Servlets Post 2.3.6 and earlier versions."  But the hotfix for AEM 5.6.1 provides version 2.3.2-R1501241-B002.  Is this bundle still vulnerable, as the wording of the bulletin seems to suggest?

The bundle filename is:  org.apache.sling.servlets.post-2.3.2-R1501241-B002.jar

Thanks.

[1] https://helpx.adobe.com/security/products/experience-manager/apsb16-05.html

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Sham_HC

All I can say is 2.3.2-R1501241-B002 is right one for 5.6.1 & you will be safe from threat.  Agree description needs to tweaked per aem version please file a separate ticket.

1 reply

Sham_HC
Sham_HCAccepted solution
New Participant
February 26, 2016

All I can say is 2.3.2-R1501241-B002 is right one for 5.6.1 & you will be safe from threat.  Agree description needs to tweaked per aem version please file a separate ticket.

Terms & ConditionsAccessibility statement

Loading footer...