CVE-2012-0213 Medium Severity Vulnerability detected by WhiteSource #11
Labels
security vulnerability
Security vulnerability detected by WhiteSource
Comments
mend-bolt-for-github
bot
added
the
security vulnerability
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
CVE-2012-0213 - Medium Severity Vulnerability
Apache POI - Java API To Access Microsoft Format Files
path: /root/.m2/repository/org/apache/poi/poi/3.8/poi-3.8.jar,2/repository/org/apache/poi/poi/3.8/poi-3.8.jar
Library home page: http://poi.apache.org/
Dependency Hierarchy:
Found in HEAD commit: 23068bfa8fba8e934988efafc64fa2cf0fdb8462
The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possibly JVM destabilization) via a crafted length value in a Channel Definition Format (CDF) or Compound File Binary Format (CFBF) document.
Publish Date: 2012-08-07
URL: CVE-2012-0213
Base Score Metrics not available
Type: Change files
Origin: apache/poi@c702bc5#diff-c81d997680cf57753553ea5bc8b6104d
Release Date: 2013-05-29
Fix Resolution: Replace or update the following file: UnhandledDataStructure.java
Step up your Open Source Security Game with WhiteSource here
The text was updated successfully, but these errors were encountered: