CVE-2021-33813 in Ubuntu

CVE-2021-33813

Priority

Description

An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause
a denial of service via a crafted HTTP request.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33813
https://github.com/hunterhacker/jdom/pull/188
https://github.com/hunterhacker/jdom/releases
https://alephsecurity.com/vulns/aleph-2021003

Notes

Package

Source: libjdom1-java (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 18.04 LTS:	needs-triage
Ubuntu 20.04 LTS:	needs-triage
Ubuntu 21.10:	needs-triage
Ubuntu 22.04 LTS:	needs-triage
Ubuntu 14.04 ESM:	needs-triage

Patches:

Package

Source: libjdom2-java (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 18.04 LTS:	needs-triage
Ubuntu 20.04 LTS:	needs-triage
Ubuntu 21.10:	needs-triage
Ubuntu 22.04 LTS:	needs-triage
Ubuntu 14.04 ESM:	DNE

Patches:

More Information

Updated: 2022-04-25 00:56:02 UTC (commit ecc1009cb19540b950de59270950018900f37f15)