https://bugzilla.redhat.com/show_bug.cgi?id=1539989
Tomas Hoger thoger@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=moderate,public=2018 |impact=moderate,public=2018 |0126,reported=20180130,sour |0126,reported=20180130,sour |ce=oss-security,cvss3=5.3/C |ce=oss-security,cvss3=5.3/C |VSS:3.0/AV:N/AC:L/PR:N/UI:N |VSS:3.0/AV:N/AC:L/PR:N/UI:N |/S:U/C:N/I:N/A:L,cwe=(CWE-8 |/S:U/C:N/I:N/A:L,cwe=(CWE-8 |35|CWE-20),fedora-all/apach |35|CWE-20),fedora-all/apach |e-poi=affected,fsw-6/poi=ne |e-poi=affected,fsw-6/poi=ne |w,fuse-6/poi=new,bpms-6/poi |w,fuse-6/poi=new,bpms-6/poi |=new,brms-5/poi=new,brms-6/ |=new,brms-5/poi=new,brms-6/ |poi=new,jdv-6/poi=new,jpp-6 |poi=new,jdv-6/poi=new,jpp-6 |/poi=new,rhel-8/apache-poi= |/poi=new,rhel-8/apache-poi= |new |affected
--- Comment #2 from Tomas Hoger thoger@redhat.com --- According to the upstream announcement, this CVE covers 4 issues tracked in the following upstream bugs. Upstream commits relevant to each upstream bug report are also listed:
Avoid infinite loop in corrupt wmf https://bz.apache.org/bugzilla/show_bug.cgi?id=61338 https://svn.apache.org/viewvc?view=revision&revision=1802997
IOUtils.skipFully can run into infinite loop https://bz.apache.org/bugzilla/show_bug.cgi?id=61294 https://svn.apache.org/viewvc?view=revision&revision=1801952 https://svn.apache.org/viewvc?view=revision&revision=1806162
OutOfMemoryError parsing a word file https://bz.apache.org/bugzilla/show_bug.cgi?id=52372 https://svn.apache.org/viewvc?view=revision&revision=1793602
Vector.read -- Java heap space on corrupt file https://bz.apache.org/bugzilla/show_bug.cgi?id=61295 https://svn.apache.org/viewvc?view=revision&revision=1802879