Information on source package libcommons-compress-java

Available versions

ReleaseVersion
stretch1.13-1
buster1.18-2+deb10u1
bullseye1.20-1
sid1.20-1

Open issues

BugstretchbusterbullseyesidDescription
CVE-2021-36090vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerableWhen reading a specially crafted ZIP archive, Compress can be made to ...
CVE-2021-35517vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerableWhen reading a specially crafted TAR archive, Compress can be made to ...
CVE-2021-35516vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerableWhen reading a specially crafted 7Z archive, Compress can be made to a ...
CVE-2021-35515vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerableWhen reading a specially crafted 7Z archive, the construction of the l ...
CVE-2018-11771vulnerable (no DSA)fixedfixedfixedWhen reading a specially crafted ZIP archive, the read method of Apach ...
CVE-2018-1324vulnerable (no DSA)fixedfixedfixedA specially crafted ZIP archive can be used to cause an infinite loop ...

Resolved issues

BugDescription
CVE-2019-12402The file name encoding algorithm used internally in Apache Commons Com ...
CVE-2012-2098Algorithmic complexity vulnerability in the sorting algorithms in bzip ...

Search for package or bug name: Reporting problems