漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache Commons Compress 1.6 to 1.20 denial of service vulnerability
Vulnerability Description
When reading a specially crafted 7Z archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' sevenz package.
CVSS Information
N/A
Vulnerability Type
长度参数不一致性处理不恰当
Vulnerability Title
Apache Commons Compress 安全漏洞
Vulnerability Description
Apache Commons Compress是美国阿帕奇(Apache)基金会的一个用于处理压缩文件的库。 Apache Commons Compress存在安全漏洞,该漏洞源于当读取一个特殊制作的7Z归档文件时,Compress可以分配大量内存,从而导致非常小的输入出现内存不足错误。
CVSS Information
N/A
Vulnerability Type
N/A