DISPUTED ThreeTen Backport v1.6.8 was discovered to contain an
integer overflow via the component
org.threeten.bp.format.DateTimeFormatter::parse(CharSequence,
ParsePosition). NOTE: this is disputed by multiple third parties who
believe there was not reasonable evidence to determine the existence of a
vulnerability. The submission may have been based on a tool that is not
sufficiently robust for vulnerability identification.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | threeten-extra | < any | UNKNOWN |
ubuntu | 22.04 | noarch | threeten-extra | < any | UNKNOWN |
ubuntu | 24.04 | noarch | threeten-extra | < any | UNKNOWN |