Information on source package tika

Available versions

ReleaseVersion
jessie1.5-1
sid1.5-5

Open issues

BugjessiesidDescription
CVE-2018-8017vulnerable (no DSA, ignored)vulnerableIn Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an ...
CVE-2018-1339vulnerable (no DSA, ignored)vulnerableA carefully crafted (or fuzzed) file can trigger an infinite loop in ...
CVE-2018-11762vulnerable (no DSA, ignored)vulnerableIn Apache Tika 0.9 to 1.18, in a rare edge case where a user does not ...
CVE-2018-11761vulnerable (no DSA, ignored)vulnerableIn Apache Tika 0.1 to 1.18, the XML parsers were not configured to ...
CVE-2016-4434vulnerable (no DSA)vulnerableApache Tika before 1.13 does not properly initialize the XML parser or ...

Resolved issues

BugDescription
CVE-2018-1338A carefully crafted (or fuzzed) file can trigger an infinite loop in ...
CVE-2018-1335From Apache Tika versions 1.7 to 1.17, clients could send carefully ...
CVE-2018-11796In Apache Tika 1.19 (CVE-2018-11761), we added an entity expansion ...
CVE-2016-6809Apache Tika before 1.14 allows Java code execution for serialized ...
CVE-2015-3271Apache Tika server (aka tika-server) in Apache Tika 1.9 might allow ...

Search for package or bug name: Reporting problems