Описание
Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.
Отчет
This issue does not affect the Apache commons-compress library as shipped with JBoss Enterprise BRMS Platform 5.2.0 or JBoss Enterprise Portal Platform 5.2.0.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | ant | Will not fix | ||
| Red Hat Enterprise Linux 6 | ant | Will not fix | ||
| Red Hat JBoss BRMS 5 | Security | Not affected | ||
| Red Hat JBoss Portal 5 | Portal | Not affected |
Показывать по
Дополнительная информация
Статус:
2.6 Low
CVSS2
Связанные уязвимости
Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.
Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.
Algorithmic complexity vulnerability in the sorting algorithms in bzip ...
Uncontrolled Resource Consumption in Apache Commons Compress
Уязвимость функции BZip2CompressorOutputStream архиватора Apache Commons Compress, позволяющая нарушителю вызвать отказ в обслуживании
2.6 Low
CVSS2