You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tika.apache.org by "Tim Allison (Jira)" <ji...@apache.org> on 2021/03/24 16:10:00 UTC

[jira] [Resolved] (TIKA-3336) New zip bombs detected

     [ https://issues.apache.org/jira/browse/TIKA-3336?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Tim Allison resolved TIKA-3336.
-------------------------------
    Fix Version/s: 1.26
       Resolution: Fixed

> New zip bombs detected
> ----------------------
>
>                 Key: TIKA-3336
>                 URL: https://issues.apache.org/jira/browse/TIKA-3336
>             Project: Tika
>          Issue Type: Task
>            Reporter: Tim Allison
>            Priority: Major
>             Fix For: 1.26
>
>
> in 1.25 vs 1.26-SNAPSHOT... example: https://corpora.tika.apache.org/base/docs/bug_trackers/MOZILLA/1534195-1623599/MOZILLA-1534483-2.zip
> This may be a new feature of the changes to secure parsing in the RecursiveParserWrapper, or (more likely) could be a bug.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)