A resource management error vulnerability exists in Apache Commons Compress, a library for processing compressed files from the Apache Foundation, which stems from the fact that when reading a specially crafted 7Z archive, Compress can allocate a large amount of memory, resulting in an out-of-memory error for very out-of-memory error for very small inputs. No details of the vulnerability are currently available.
CPE | Name | Operator | Version |
---|---|---|---|
apache apache commons compress >=1.6, | le | 1.20 |