Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Ant TAR archive denial of service vulnerability
Vulnerability Description
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected.
CVSS Information
N/A
Vulnerability Type
长度参数不一致性处理不恰当
Vulnerability Title
Apache Ant 安全漏洞
Vulnerability Description
Apache Ant是美国阿帕奇(Apache)基金会的一套用于Java软件开发的自动化工具。该工具主要用于软件的编译、测试和部署等。 Apache Ant 存在安全漏洞,该漏洞源于应用程序在处理TAR档案时没有正确地控制内部资源的消耗。攻击者可利用该漏洞触发资源耗尽并执行拒绝服务(DoS)攻击。
CVSS Information
N/A
Vulnerability Type
N/A