Information on source package libcommons-fileupload-java

Available versions

ReleaseVersion
jessie1.3.1-1+deb8u1
stretch1.3.2-2
buster1.3.3-1
bullseye1.4-1
bookworm1.4-2
trixie1.5-1
sid1.5-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-24998vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedApache Commons FileUpload before 1.5 does not limit the number of requ ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2016-1000031vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableApache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation ...

Resolved issues

BugDescription
CVE-2016-3092The MultipartStream class in Apache Commons Fileupload before 1.3.2, a ...
CVE-2014-0050MultipartStream.java in Apache Commons FileUpload before 1.3.1, as use ...
CVE-2013-2186The DiskFileItem class in Apache Commons FileUpload, as used in Red Ha ...
CVE-2013-0248The default configuration of javax.servlet.context.tempdir in Apache C ...

Security announcements

DSA / DLADescription
DSA-3611-1libcommons-fileupload-java - security update
DLA-528-1libcommons-fileupload-java - security update
DSA-2856-1libcommons-fileupload-java - security update
DSA-2827-1libcommons-fileupload-java - arbitrary file upload via deserialization

Search for package or bug name: Reporting problems