A xstream security update has been released for CentOS 7.

CESA-2021:0162 Important CentOS 7 xstream Security Update

CentOS Errata and Security Advisory 2021:0162 Important

Upstream details at :   https://access.redhat.com/errata/RHSA-2021:0162

The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )

x86_64:
f53aa25a58a78740dad5a5777ccec426834c3455b4a323c3cd264c877f39e567 xstream-1.3.1-12.el7_9.noarch.rpm
6abc3f24e051fa25828e517e1a6999a1a3612b5f97a13d8e99553cc31d24663d xstream-javadoc-1.3.1-12.el7_9.noarch.rpm

Source:
d078e00e0e2cb6bcffa7a7dc8d938b38d802b89cb906bcdfb2b250d3624f9991 xstream-1.3.1-12.el7_9.src.rpm