资产安全
商业安全
安全服务
返回- 发布日期2020-10-05
- 感知时间2020-10-05
- 漏洞类型安全更新
- 风险等级未知
- 更新版本未知
- 情报贡献TSRC
USN-4564-1: Apache Tika vulnerabilities
tika vulnerabilities<br/>A security issue affects these releases of Ubuntu and its derivatives:<br/>Ubuntu 16.04 LTS<br/>Summary<br/>Apache Tika could be made to crash if it opened a specially crafted file.<br/>Software Description<br/>tika - A content analysis toolkit<br/>Details<br/>It was discovered that Apache Tika can have an excessive memory usage by using a crafted or corrupt PSD file. An attacker could use it to cause a denial of service (crash). (CVE-2020-1950, CVE-2020-1951)<br/>Update instructions<br/>The problem can be corrected by updating your system to the following package versions:<br/>Ubuntu 16.04 LTS<br/>libtika-java - 1.5-4ubuntu0.1<br/>To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.<br/>In general, a standard system update will make all the necessary changes.<br/>References<br/>CVE-2020-1950<br/>CVE-2020-1951<br/>]]>
Ubuntu是一个以桌面应用为主的Linux操作系统
<p><a target="_blank" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1951">CVE-2020-1951</a></p><p><a target="_blank" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1950">CVE-2020-1950</a></p>
暂无
暂无
https://usn.ubuntu.com/4564-1/
微信扫码关注公众号
