The CCB recommends organisations to patch vulnerable systems with the highest priority, after thorough testing.
Patch Redhat’s HSQLDB package to version 2.7.1
The CCB recommends customer-managed Citrix ADC and Citrix Gateway appliances to install updated versions with the highest priority, after thorough testing.
Users operating TLS servers may consider disabling TLS client authentication, if it is being used, until fixes are applied.
To address the issue, VMware has updated XStream to version 1.4.19 and to apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' available at:
The Centre for Cyber security Belgium recommends system administrators to identify software which includes this library as a supply-chain dependency.
The CCB recommends installing updates for vulnerable devices with the highest priority, after thorough testing.