PT-2024-19664 · Apfloat · Apfloat
Llm4Ig
·
Published
2024-04-08
·
Updated
2024-08-01
·
CVE-2024-23085
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apfloat version 1.10.1
Description
A NullPointerException was discovered in Apfloat via the component
org.apfloat.internal.DoubleScramble::scramble(double[], int, int[]). However, the existence of this issue is disputed by multiple third parties due to potentially insufficient evidence.Recommendations
For Apfloat version 1.10.1, consider temporarily disabling the
scramble function in org.apfloat.internal.DoubleScramble as a mitigation measure until further clarification or a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Apfloat