Описание
Security update for jdom
This update for jdom fixes the following issues:
- CVE-2021-33813: Fixed possible denial-of-service XXE issue in SAXBuilder via a crafted HTTP request (bsc#1187446).
Список пакетов
SUSE Linux Enterprise Software Development Kit 12 SP5
jaxen-1.1.6-26.5.1
jdom-1.1.3-26.5.1
xom-1.2b1-26.5.1
Ссылки
- Link for SUSE-SU-2024:1871-1
- E-Mail link for SUSE-SU-2024:1871-1
- SUSE Security Ratings
- SUSE Bug 1187446
- SUSE Bug 1225503
- SUSE CVE CVE-2021-33813 page
Описание
An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request.
Затронутые продукты
SUSE Linux Enterprise Software Development Kit 12 SP5:jaxen-1.1.6-26.5.1
SUSE Linux Enterprise Software Development Kit 12 SP5:jdom-1.1.3-26.5.1
SUSE Linux Enterprise Software Development Kit 12 SP5:xom-1.2b1-26.5.1
Ссылки
- CVE-2021-33813
- SUSE Bug 1187446