VMware catches up with some Apache Struts patches

The story, "VMware catches up with some Apache Struts patches, but not all," posted to the wire Thursday, incorrectly suggested that a VMware product was affected by a vulnerability identified as CVE-2014-0116. The product is not affected by that vulnerability. The story has been corrected on the wire as follows:

The headline has been modified and now reads:

"VMware catches up with some Apache Struts patches"

The first paragraph has been modified and now reads as follows:

"Two months after critical vulnerabilities were patched in Apache Struts, a popular open-source framework for developing Java-based Web applications, VMware released a security update to incorporate the fixes in its vCenter Operations Management Suite product."

The 10th, 11th and 12th paragraphs have been removed.

To comment on this article and other CSO content, visit our Facebook page or our Twitter stream.
New Year's resolution: ‘I will eliminate passwords’ in 2017
Notice to our Readers
We're now using social media to take your comments and feedback. Learn more about this here.