Bugzilla – Bug 1203673
VUL-0: CVE-2022-38648: xmlgraphics-batik: information disclosure vulnerability
Last modified: 2022-10-10 16:49:16 UTC
Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XML Graphics
allows an attacker to fetch external resources. This issue affects Apache XML
Graphics Batik 1.14.
Thanks Robert for your report.
I'm no longer maintainer or bugowner for Java related packages. This is done by Fridrich Strba now. Thanks Fridrich for taking over!
tracking as affected: