mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-01 20:05:09 +02:00
marc
759 B
759 B
CVE-2021-28657
Description
A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser up to and including Tika 1.25. Apache Tika users should upgrade to 1.26 or later.
POC
Reference
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpuoct2021.html