Hi Folks,
To fix the vulnerability it's needed to upgrade wss4j-1.5.4 to wss4j-1.6.17
Where wss4j-1.6.17 is not backward compatible and breaks lots of existing code.
Is there any patch or recommendations are there to fix the vulnerability CVE-2015-0226 without breaking the existing written code?