8 matches found
Mageia: Security Advisory (MGASA-2019-0001)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
theweeklysource.com.au Improper Access Control vulnerability OBB-1384398
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
io.takari:jarmony (=0.1.0) potentially affected by CVE-2018-1324 via io.takari:commons-compress (=1.12)
io.takari:commons-compress MAVEN version =1.12 is affected by a known vulnerability. The following packages have a transitive dependency on io.takari:commons-compress and may be impacted: - io.takari:jarmony =0.1.0 Source cves: CVE-2018-1324 Source advisory: OSV:GHSA-H436-432X-8FVX...
Updated pache-commons-compress packages fix security vulnerabilities
A flaw was found in Apache Commons Compress versions 1.11 to 1.15. A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount ...
Security Bulletin: Public disclosed vulnerability from Apache Commons affects IBM Spectrum LSF Explorer.
Summary Public disclosed vulnerability CVE-2018-1324 from Apache Commons affects IBM Spectrum LSF Explorer. Vulnerability Details CVE Descriptions CVEID: CVE-2018-1324 DESCRIPTION: A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field...
Fedora 27 : apache-commons-compress (2018-cf918d73cc)
Fix infinite loop security vulnerability CVE-2018-1324 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
CVE-2018-1324
A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of service attack against services that use Compress' zip...
CVE-2018-1324
CVE-2018-1324 : Apache Commons Compress multiple advisories describe an infinite‑loop DoS in the Zip extra field parser used by ZipFile/ZipArchiveInputStream (versions 1.11–1.15). A specially crafted ZIP can cause an infinite loop, impacting services that use the library. Public docs confirm this...