VDB
GCVE-110-MAGEIA-2020-1
GCVE-110-MAGEIA-2020-1
Advisory Published
pdated apache-commons-compress packages fix security vulnerability:
A resource consumption vulnerability was discovered in apache-commons-
compress in the way NioZipEncoding encodes filenames. Applications that
use Compress to create archives, with one of the filenames within the
archive being controlled by the user, may be vulnerable to this flaw.
A remote attacker could exploit this flaw to cause an infinite loop during
the archive creation, thus leading to a denial of service (CVE-2019-12402).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | apache-commons-compress | 1.19-1.mga7 (unaffected), 0 (affected), 0 (affected), 1.19-1.mga7 (unaffected) | — |
| Mageia | xfburn | 0 (affected), 0.6.1-1.mga7 (unaffected) | — |
Aliases
References
Updated xfburn packages fix crash
advisory
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.