The story, "VMware catches up with some Apache Struts patches, but not all," posted to the wire Thursday, incorrectly suggested that a VMware product was affected by a vulnerability identified as CVE-2014-0116. The product is not affected by that vulnerability. The story has been corrected on the wire as follows:
The headline has been modified and now reads:
"VMware catches up with some Apache Struts patches"
The first paragraph has been modified and now reads as follows:
"Two months after critical vulnerabilities were patched in Apache Struts, a popular open-source framework for developing Java-based Web applications, VMware released a security update to incorporate the fixes in its vCenter Operations Management Suite product."
The 10th, 11th and 12th paragraphs have been removed.