You are viewing a plain text version of this content. The canonical link for it is here.

Posted to announce@apache.org by Tim Allison <ta...@apache.org> on 2022/05/16 16:45:25 UTC

CVE-2022-25169: Apache Tika BPGParser Memory Usage DoS

Description:

The BPG parser in versions of Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.