oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2022-25169: Apache Tika BPGParser Memory Usage DoS

From: Tim Allison <tallison () apache org>
Date: Mon, 16 May 2022 16:45:25 +0000
Description:

The BPG parser in versions of Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully 
crafted files.
Previous By Date Next
Previous By Thread Next

Current thread: