CVE-2024-25710 (https://lists.apache.org/thread/cz8qkcwphy4cx8gltn932ln51cbtq6kf): Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.3 through 1.25.0. Users are recommended to upgrade to version 1.26.0 which fixes the issue. CVE-2024-26308 (https://lists.apache.org/thread/ch5yo2d21p7vlqrhll9b17otbyq4npfg): Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue. Please bump to 1.26.0.
This issue has been addressed in the following products: Red Hat Data Grid Via RHSA-2024:1509 https://access.redhat.com/errata/RHSA-2024:1509
This issue has been addressed in the following products: Red Hat build of Quarkus 3.2.11 Via RHSA-2024:1662 https://access.redhat.com/errata/RHSA-2024:1662
This issue has been addressed in the following products: Migration Toolkit for Runtimes 1 on RHEL 8 Via RHSA-2024:1923 https://access.redhat.com/errata/RHSA-2024:1923
This issue has been addressed in the following products: Red Hat build of Quarkus 2.13.9.SP2 Via RHSA-2024:1797 https://access.redhat.com/errata/RHSA-2024:1797
This issue has been addressed in the following products: RHINT Service Registry 2.5.11 GA Via RHSA-2024:2833 https://access.redhat.com/errata/RHSA-2024:2833
This issue has been addressed in the following products: MTA-6.2-RHEL-9 MTA-6.2-RHEL-8 Via RHSA-2024:3989 https://access.redhat.com/errata/RHSA-2024:3989
This issue has been addressed in the following products: RHOSS-1.33-RHEL-8 Via RHSA-2024:4057 https://access.redhat.com/errata/RHSA-2024:4057