Описание
A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| tika | unfixed | package | ||
| tika | no-dsa | bullseye | package | |
| tika | no-dsa | buster | package |
Примечания
https://www.openwall.com/lists/oss-security/2021/03/30/3
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 5 лет назад
A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
CVSS3: 5.5
redhat
почти 5 лет назад
A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
CVSS3: 5.5
nvd
почти 5 лет назад
A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
