Hi, I tried to sign up for a JIRA account to post this directly to Commons
Daemon, but it did not list “daemon” as an option to sign up, and there was
nowhere on the Github project to register an issue. So, I am posting here.
Earlier in December 2023, jsvc was building fine for us on both x86
Pull request created - see https://github.com/apache/commons-compress/pull/500
Simple change to check the checksum on entries whilst looping over ones
considered to be directories.
Added 2 more tests that real tar archives ARE identified and that one utf-16
text file is NOT.
Gren Elliot
Senior
Severity: low
Affected versions:
- Apache Commons Configuration 2.0 before 2.10.1
Description:
Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue
affects Apache Commons Configuration: from 2.0 before 2.10.1.
Users are recommended to upgrade to version 2.10.1, which
Severity: low
Affected versions:
- Apache Commons Configuration 2.0 before 2.10.1
Description:
Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue
affects Apache Commons Configuration: from 2.0 before 2.10.1.
Users are recommended to upgrade to version 2.10.1, which
Introducing Apache Commons Configuration 2.10.1
The Apache Commons Configuration software library provides a generic
configuration interface that enables an application to read
configuration data from a variety of sources.
Tools to assist in the reading of configuration/preferences files in
