Fabre

#990673 libjdom2-intellij-java: CVE-2021-33813 #990673

Package:: src:libjdom2-intellij-java

Source:: libjdom2-intellij-java

Submitter:: Salvatore Bonaccorso

Date:: 2021-07-08 17:21:03 UTC

Severity:: important

Tags:

#990673#5

Date:: 2021-07-04 12:33:05 UTC

From:

To:

Source: libjdom2-java
Version: 2.0.6-2
Severity: important
Tags: security upstream
Forwarded: https://github.com/hunterhacker/jdom/pull/188
X-Debbugs-Cc: carnil@debian.org, Debian Security Team <team@security.debian.org>
Control: clone -1 -2
Control: reassign -2 src:libjdom1-java 1.1.3-2
Control: found -1 2.0.6-1
Control: found -2 1.1.3-2

Hi,

The following vulnerability was published for libjdom2-java.

CVE-2021-33813[0]:
| An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to
| cause a denial of service via a crafted HTTP request.


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2021-33813
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33813
[1] https://github.com/hunterhacker/jdom/pull/188
[2] https://alephsecurity.com/vulns/aleph-2021003

Regards,
Salvatore

#990673 libjdom2-intellij-java: CVE-2021-33813 #990673

Just Reply to ...

Reply to submitter ...

Send control command (Silently)

Set Architecture Tags (Silently)