Philipp Ottlinger created RAT-214:
-------------------------------------
Summary: Update commons-compress and apache-ant due to security
problems
Key: RAT-214
URL: https://issues.apache.org/jira/browse/RAT-214
Project: Apache Rat
Issue Type: Bug
Affects Versions: 0.11
Reporter: Philipp Ottlinger
Assignee: Philipp Ottlinger
Fix For: 0.12
Try to update
* commons-compress
* apache-ant
due to possible security problems.
h3. Context
Algorithmic complexity vulnerability in the sorting algorithms in
bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons
Compress before 1.4.1 and Apache Ant before 1.8.4 allows remote
attackers to cause a denial of service (CPU consumption) via a file with
many repeating inputs.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
