Bug 28082 - tika security issue CVE-2020-1951
Summary: tika security issue CVE-2020-1951
Status: RESOLVED DUPLICATE of bug 22954
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: Mageia Bug Squad
QA Contact: Sec team
URL: https://nvd.nist.gov/vuln/detail/CVE-...
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-01-13 15:33 CET by Zombie Ryushu
Modified: 2021-01-13 17:46 CET (History)
0 users

See Also:
Source RPM: tika-1.17-2.mga7.src.rpm
CVE: CVE-2020-1951
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Zombie Ryushu 2021-01-13 15:33:24 CET 
A carefully crafted or corrupt PSD file can cause an infinite loop in Apache Tika's PSDParser in versions 1.0-1.23.
Zombie Ryushu 2021-01-13 15:33:39 CET

CVE: (none) => CVE-2020-1951

Comment 1 David Walser 2021-01-13 17:46:52 CET 
Already reported.

*** This bug has been marked as a duplicate of bug 22954 ***

Status: NEW => RESOLVED
Resolution: (none) => DUPLICATE
Note You need to log in before you can comment on or make changes to this bug.