Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2025-47436
- EPSS 0.07%
- Published 14.05.2025 13:11:36
- Last modified 14.07.2025 14:55:25
Heap-based Buffer Overflow vulnerability in Apache ORC. A vulnerability has been identified in the ORC C++ LZO decompression logic, where specially crafted malformed ORC files can cause the decompressor to allocate a 250-byte buffer but then attempt...
7.5
CVE-2018-8015
- EPSS 4.15%
- Published 18.05.2018 17:29:00
- Last modified 21.11.2024 04:13:06
In Apache ORC 1.0.0 to 1.4.3 a malformed ORC file can trigger an endlessly recursive function call in the C++ or Java parser. The impact of this bug is most likely denial-of-service against software that uses the ORC file parser. With the C++ parser,...
1