tika 1.22-1 source package in Ubuntu
Changelog
tika (1.22-1) unstable; urgency=medium
* New upstream release
- Fixes CVE-2019-10088: A carefully crafted or corrupt zip file can cause
an out of memory error in RecursiveParserWrapper (Closes: #933744)
- Fixes CVE-2019-10094: A carefully crafted package/compressed file that,
when unzipped/uncompressed yields the same file (a quine), causes a stack
overflow error in RecursiveParserWrapper (Closes: #933746)
- Fixes CVE-2019-10093: A carefully crafted 2003ml or 2006ml file could
consume all available SAXParsers in the pool and lead to very long hangs.
(Closes: #933745)
- Refreshed the patches
- Ignore the new dependency on c3p0 (not used)
-- Emmanuel Bourg <email address hidden> Mon, 05 Aug 2019 11:41:25 +0200
Upload details
- Uploaded by:
- Debian Java Maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian Java Maintainers
- Architectures:
- all
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | release | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| tika_1.22-1.dsc | 2.7 KiB | ade5061dae979d66afa77b99e498c29ba6cec0e902f3700f6c87430e52030453 |
| tika_1.22.orig.tar.xz | 22.3 MiB | 0407432e3581a65530fd8bff13f2848894b03b28fd46dc0dd7b16daa60b0f559 |
| tika_1.22-1.debian.tar.xz | 7.5 KiB | b4820f6b2d679f81256d584b96e26487e804b9448b0030808d4a87973d53b41f |
Available diffs
- diff from 1.21-1 to 1.22-1 (14.4 MiB)
No changes file available.
Binary packages built by this source
- libtika-java: No summary available for libtika-java in ubuntu hirsute.
No description available for libtika-java in ubuntu hirsute.
