Описание
Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.0.10-2 |
| cosmic | ignored | end of life |
| devel | not-affected | 2.1.7-2 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | not-affected | 2.0.10-2 |
| esm-apps/focal | not-affected | 2.0.10-2 |
| esm-apps/jammy | not-affected | 2.1.7-2 |
| esm-apps/xenial | not-affected | 1.5.6-1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
Apache Santuario XML Security for Java before 1.5.6, when applying Tra ...
Improper Input Validation in Apache Santuario XML Security
Уязвимость платформы для обеспечения стандартов безопасности для XML Apache Santuario XML Security for Java, связанная с ошибками управления ресурсом, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2