Описание
In Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an infinite loop in the IptcAnpaParser.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat BPM Suite 6 | tika-core | Will not fix | ||
| Red Hat Fuse 7 | camel-tika | Not affected | ||
| Red Hat JBoss BRMS 5 | tika-core | Will not fix | ||
| Red Hat JBoss BRMS 6 | tika-core | Will not fix | ||
| Red Hat JBoss Data Virtualization 6 | tika-core | Will not fix | ||
| Red Hat JBoss Fuse Integration Service 2 | tika-core | Out of support scope | ||
| Red Hat JBoss Fuse Service Works 6 | tika-core | Will not fix | ||
| Red Hat Satellite 5 | tika | Not affected | ||
| Red Hat Software Collections | rh-eclipse46-tika | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-835
https://bugzilla.redhat.com/show_bug.cgi?id=1632466tika: infinite loop in the IptcAnpaParser
EPSS
Процентиль: 84%
0.02108
Низкий
2.5 Low
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 7 лет назад
In Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an infinite loop in the IptcAnpaParser.
CVSS3: 5.5
nvd
больше 7 лет назад
In Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an infinite loop in the IptcAnpaParser.
CVSS3: 5.5
debian
больше 7 лет назад
In Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an in ...
EPSS
Процентиль: 84%
0.02108
Низкий
2.5 Low
CVSS3