VDB
GCVE-110-MAGEIA-2014-56
GCVE-110-MAGEIA-2014-56
Advisory Published
Algorithmic complexity vulnerability in the sorting algorithms in bzip2
compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress
before 1.4.1 allows remote attackers to cause a denial of service (CPU
consumption) via a file with many repeating inputs (CVE-2012-2098).
plexus-archiver used an embedded copy of the affected code from Apache
Commons Compress, and therefore was affected by this. It has been patched
to use the apache-commons-compress package, in which this issue has already
been fixed, for bzip2 compression and decompression.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libreoffice | 0 (affected), 4.0.6.2-2.mga3 (unaffected) | — |
| Mageia | plexus-archiver | 0 (affected), 0 (affected), 2.3-1.1.mga3 (unaffected), 2.3-1.1.mga3 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,161 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.