Search for packages
| purl | pkg:maven/org.apache.tika/tika-bundle@0.7 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-42ad-sh45-7fev
Aliases: CVE-2021-28657 GHSA-567x-m4wm-87v8 |
Loop with Unreachable Exit Condition (Infinite Loop) A carefully crafted or corrupt file may trigger an infinite loop in Tika's MP3Parser |
Affected by 1 other vulnerability. |
|
VCID-8qc9-3mxe-8ydp
Aliases: CVE-2022-33879 GHSA-6q8v-2hvm-fx37 |
The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-06T02:39:20.406615+00:00 | GitLab Importer | Affected by | VCID-8qc9-3mxe-8ydp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-bundle/CVE-2022-33879.yml | 38.6.0 |
| 2026-06-04T20:48:03.322361+00:00 | GitLab Importer | Affected by | VCID-42ad-sh45-7fev | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tika/tika-bundle/CVE-2021-28657.yml | 38.6.0 |