When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2021-07-14T06:20:11

Updated: 2024-08-04T00:54:51.488Z

Reserved: 2021-07-12T00:00:00

Link: CVE-2021-36373

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-07-14T07:15:08.237

Modified: 2024-11-21T06:13:37.863

Link: CVE-2021-36373

cve-icon Redhat

Severity : Low

Publid Date: 2021-07-13T00:00:00Z

Links: CVE-2021-36373 - Bugzilla