CVE-2021-36373 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	When reading a specially crafted TAR archive, Apache Ant before version 1.10.11 can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2151	ant	1.10.10-1	1.10.11-1	Low	Fixed

Date	Advisory	Group	Package	Severity	Type
20 Jul 2021	ASA-202107-43	AVG-2151	ant	Low	denial of service

References
https://www.openwall.com/lists/oss-security/2021/07/13/5 https://github.com/apache/ant/commit/6594a2d66f7f060dafcbbf094dd60676db19a842