https://bugzilla.redhat.com/show_bug.cgi?id=1981903
--- Doc Text *updated* by RaTasha Tillery-Smith <rtillery(a)redhat.com> ---
A flaw was found in apache-commons-compress. When reading a specially crafted TAR archive,
Compress can allocate large amounts of memory that leads to an out-of-memory error for
small inputs. This flaw allows the mounting of a denial of service attack against services
that use Compress' TAR package. The highest threat from this vulnerability is to
system availability.
--
You are receiving this mail because:
You are on the CC list for the bug.