DEBIAN-CVE-2022-33879

DEBIAN-CVE-2022-33879 PUBLISHED CVSS 3.299999952316284 LOW

The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insufficient, and we found a separate, new regex DoS in a different regex in the StandardsExtractingContentHandler. These are now fixed in 1.28.4 and 2.4.1.

Risk Scores

CVSS v3.1

3.299999952316284

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected Products

Vendor	Product	Versions
Debian:11	tika	0, 1.22-2, 1.22-2

Timeline

Jun 27, 2022 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2022-33879 advisory

Open in Interactive Console →