From e5ddb3877b58a054dd3881e56d2434fb7d3ffa54 Mon Sep 17 00:00:00 2001
From: Tim White <walton.timothy.james.white@gmail.com>
Date: Thu, 28 Sep 2023 13:36:03 +1300
Subject: [PATCH 1/3] Generated pov-project.json

---
 CVE-2015-6420/pov-project.json | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 CVE-2015-6420/pov-project.json

diff --git a/CVE-2015-6420/pov-project.json b/CVE-2015-6420/pov-project.json
new file mode 100644
index 0000000..ba95502
--- /dev/null
+++ b/CVE-2015-6420/pov-project.json
@@ -0,0 +1,24 @@
+{
+  "id": "CVE-2015-6420",
+  "artifact": "commons-collections:commons-collections",
+  "vulnerableVersions": [
+    "1.0",
+    "2.0",
+    "2.0.20020914.015953",
+    "2.0.20020914.020746",
+    "2.0.20020914.020858",
+    "2.1",
+    "2.1.1",
+    "3.0",
+    "3.0-dev2",
+    "3.1",
+    "3.2",
+    "3.2.1"
+  ],
+  "fixVersion": null,
+  "testSignalWhenVulnerable": "success",
+  "references": [
+    "https://nvd.nist.gov/vuln/detail/CVE-2015-6420",
+    "https://github.com/advisories/GHSA-6hgm-866r-3cjv"
+  ]
+}

From bef02420f0048ae5433f2b479c111eacb11a31c1 Mon Sep 17 00:00:00 2001
From: Tim White <walton.timothy.james.white@gmail.com>
Date: Thu, 28 Sep 2023 13:43:42 +1300
Subject: [PATCH 2/3] Add fixVersion for CVE-2015-6420

---
 CVE-2015-6420/README.md        | 2 +-
 CVE-2015-6420/pov-project.json | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/CVE-2015-6420/README.md b/CVE-2015-6420/README.md
index 54cb118..acfc548 100644
--- a/CVE-2015-6420/README.md
+++ b/CVE-2015-6420/README.md
@@ -5,7 +5,7 @@ The payload and test used is based on
 
 The actual test is identical to the test used to verify CVE-2015-7501 . 
 
-
+Requires JDK 8. Succeeds (indicating vulnerability) at `3.2.1`; fails (indicating no vulnerability) at `3.2.2`.
 
 
 
diff --git a/CVE-2015-6420/pov-project.json b/CVE-2015-6420/pov-project.json
index ba95502..5488b24 100644
--- a/CVE-2015-6420/pov-project.json
+++ b/CVE-2015-6420/pov-project.json
@@ -15,7 +15,7 @@
     "3.2",
     "3.2.1"
   ],
-  "fixVersion": null,
+  "fixVersion": "3.2.2",
   "testSignalWhenVulnerable": "success",
   "references": [
     "https://nvd.nist.gov/vuln/detail/CVE-2015-6420",

From 1a5ba02b6b1de44e4c9de0ef9a1a611caedf633e Mon Sep 17 00:00:00 2001
From: Tim White <walton.timothy.james.white@gmail.com>
Date: Thu, 28 Sep 2023 13:44:32 +1300
Subject: [PATCH 3/3] Add jdkVersion for CVE-2015-6420, needed for test not to
 be skipped

---
 CVE-2015-6420/pov-project.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CVE-2015-6420/pov-project.json b/CVE-2015-6420/pov-project.json
index 5488b24..708589e 100644
--- a/CVE-2015-6420/pov-project.json
+++ b/CVE-2015-6420/pov-project.json
@@ -16,6 +16,7 @@
     "3.2.1"
   ],
   "fixVersion": "3.2.2",
+  "jdkVersion": "8",
   "testSignalWhenVulnerable": "success",
   "references": [
     "https://nvd.nist.gov/vuln/detail/CVE-2015-6420",