[Git][security-tracker-team/security-tracker][master] new tika issues

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bc0495fa by Moritz Muehlenhoff at 2020-03-18T17:41:18+01:00
new tika issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21202,10 +21202,18 @@ CVE-2020-1953 (Apache Commons Configuration uses a third-party library to parse
 	NOTE: https://www.openwall.com/lists/oss-security/2020/03/13/1
 CVE-2020-1952
 	RESERVED
-CVE-2020-1951
+CVE-2020-1951 [Infinite Loop (DoS) vulnerability in Apache Tika's PSDParser]
 	RESERVED
-CVE-2020-1950
+	- tika <unfixed>
+	[buster] - tika <no-dsa> (Minor issue)
+	[stretch] - tika <no-dsa> (Minor issue)
+	NOTE: https://www.openwall.com/lists/oss-security/2020/03/18/4
+CVE-2020-1950 [Excessive memory usage (DoS) vulnerability in Apache Tika's PSDParser]
 	RESERVED
+	- tika <unfixed>
+	[buster] - tika <no-dsa> (Minor issue)
+	[stretch] - tika <no-dsa> (Minor issue)
+	NOTE: https://www.openwall.com/lists/oss-security/2020/03/18/3
 CVE-2020-1949
 	RESERVED
 CVE-2020-1948



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc0495fa97303da265f397e407e3625f7e3294a8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc0495fa97303da265f397e407e3625f7e3294a8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200318/6f303012/attachment.html>