'[oss-security] CVE-2024-29131: Apache Commons Configuration: StackOverflowError adding property in A'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2024-29131: Apache Commons Configuration: StackOverflowError adding property in A
From:       "Gary D. Gregory" <ggregory () apache ! org>
Date:       2024-03-20 21:53:38
Message-ID: 1b03af84-6199-6b82-7c43-3b896efdfcd9 () apache ! org
[Download RAW message or body]

Severity: low

Affected versions:

- Apache Commons Configuration 2.0 before 2.10.1

Description:

Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache \
Commons Configuration: from 2.0 before 2.10.1.

Users are recommended to upgrade to version 2.10.1, which fixes the issue.

This issue is being tracked as CONFIGURATION-840 

Credit:

Bob Marinier (finder)

References:

https://commons.apache.org/
https://www.cve.org/CVERecord?id=CVE-2024-29131
https://issues.apache.org/jira/browse/CONFIGURATION-840

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic