GHSA-6fxm-66hq-fc96, CVE-2012-2098
maven/org.apache.commons/commons-compress
Uncontrolled Resource Consumption in Apache Commons Compress
Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.
All versions before 1.4.1
Upgrade to version 1.4.1 or above.
2022-07-24
source |