Apache Commons Compress: Uncontrolled Resource Consumption

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Apache Commons Compress: Uncontrolled Resource Consumption

ECHO-abe8-b546-ad42

Summary

The Apache Commons Compress library has a bug that can cause a denial-of-service (DoS) attack if an attacker sends a specially crafted file. This can lead to a server crash or slowdown. Update to a fixed version of the library to prevent this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
–	python-aiohttp	All versions	–

Original title

ECHO-abe8-b546-ad42

https://advisory.echohq.com/cve/CVE-2026-34519 URL

Published: 3 Apr 2026 · Updated: 3 Apr 2026 · First seen: 3 Apr 2026