Security Advisory
CVE-2022-25169
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.