[CVE-2018-17202]: Apache Commons Imaging information disclosure vulnerability

2019-05-03 Thread Bruno P. Kinoshita
Severity: Medium Vendor: The Apache Software Foundation Versions Affected: Apache Sanselan 0.97-incubator Description: Certain input files could make the code to enter into an infinite loop when Apache Sanselan  0.97-incubator was used to parse them, which could be used in a DoS attack. Note

[CVE-2018-17201]: Apache Commons Imaging information disclosure vulnerability

2019-05-03 Thread Bruno P. Kinoshita
Severity: Medium Vendor: The Apache Software Foundation Versions Affected: Apache Sanselan 0.97-incubator Description: Certain input files could make the code hang when Apache Sanselan 0.97-incubator was used to parse them, which could be used in a DoS attack. Note that Apache Sanselan

[ANNOUNCEMENT] Apache Commons Imaging 1.0-alpha2 Released

2020-08-07 Thread Bruno P. Kinoshita
The Apache Commons Imaging team is pleased to announce the commons-imaging-1.0-alpha2 release! Apache Commons Imaging (previously Sanselan) is a pure-Java image library. There are breaking changes between 1.0-alpha1 and 1.0-alpha2, until we stabilize the API for our 1.0 release. Users are