Sachin created TIKA-2956:
----------------------------
Summary: Stack Overflow issue reported on metadata-extractor used
version by Tika
Key: TIKA-2956
URL: https://issues.apache.org/jira/browse/TIKA-2956
Project: Tika
Issue Type: Bug
Components: app
Affects Versions: 1.22
Reporter: Sachin
Nexus Sonatype has reported Security issue with metadata-extractor version used
by Tika
*Severity :* CVE CVSS 3.0: 7.5Sonatype CVSS 3.0: 7.5
*Weakness :* CVE CWE: 400
*Source :* National Vulnerability Database
*Categories :* Data
*Description from CVE :* MetadataExtractor 2.1.0 allows stack consumption.
*Explanation :* The MetadataExtractor package is vulnerable to a Denial of
Service [DoS] attack. The GetWbTypeDescription[] function in the
PanasonicRawWbInfo2Descriptor.cs and PanasonicRawWbInfoDescriptor.cs files
fails to prevent infinite recursion when processing malformed light source
information from PanasonicRawWbInfo metadata. A remote attacker can exploit
this vulnerability by submitting PanasonicRawWbInfo metadata containing light
source information that exploits this issue. This will cause the application to
consume a large amount of available resources, ultimately resulting in a DoS
condition.
*Detection :* The application is vulnerable by using this component.
*Recommendation :* There is no non-vulnerable version of this component. We
recommend investigating alternative components or potential mitigating control.
*Root Cause :*
tika-app-1.22.jarcom/drew/metadata/exif/PanasonicRawDistortionDescriptor.class
: [2.10.0 , ]
*Advisories :* Project:
[https://github.com/drewnoakes/metadata-extractor/issues/419]
*CVSS Details :* CVE CVSS 3.0: 7.5CVSS Vector:
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
