VYPR

Maven package

org.apache.systemds/systemds

pkg:maven/org.apache.systemds/systemds

Vulnerabilities (1)

  • CVE-2022-26477HigJun 27, 2022
    affected < 2.2.2fixed 2.2.2

    The Security Team noticed that the termination condition of the for loop in the readExternal method is a controllable variable, which, if tampered with, may lead to CPU exhaustion. As a fix, we added an upper bound and termination condition in the read and write logic. We classif