Apache Updates
1643Warning Date
Severity Level
Warning Number
Target Sector
14 July, 2021
● High
2021-3186
All
Description:
Apache has released security updates to address multiple vulnerabilities in the following products:
- Apache Ant 1.9.x.
- Apache Ant 1.10.
- Apache Commons Compress 1.0 to 1.20
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Denial of Service (DoS)
- Execute arbitrary code
Best practice and Recommendations:
The CERT team encourages users to review Apache security advisory and apply the necessary updates:
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser
- http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/browser