|
|
Log in / Subscribe / Register

apache-commons-compress: denial of service

Package(s):apache-commons-compress CVE #(s):CVE-2012-2098
Created:June 4, 2012 Updated:February 13, 2014
Description: From the CVE entry:

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.

Fixed in version 1.4.1.

Alerts:
Mageia MGASA-2014-0056 plexus-archiver 2014-02-12
Fedora FEDORA-2013-5546 plexus-archiver 2013-05-11
Fedora FEDORA-2013-5548 plexus-archiver 2013-05-11
Fedora FEDORA-2012-8465 apache-commons-compress 2012-06-03
Fedora FEDORA-2012-8428 apache-commons-compress 2012-06-02
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds