Опубликовано: 16 мая 2022
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.5
Описание
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| impish | ignored | end of life |
| jammy | needs-triage |
Показывать по
10
EPSS
Процентиль: 54%
0.00313
Низкий
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.5
nvd
больше 3 лет назад
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.
CVSS3: 5.5
debian
больше 3 лет назад
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may ...
CVSS3: 5.5
github
больше 3 лет назад
Apache Tika vulnerable to uncontrolled memory consumption
EPSS
Процентиль: 54%
0.00313
Низкий
4.3 Medium
CVSS2
5.5 Medium
CVSS3