Uncaught Exception Affecting org.graalvm.sdk:graal-sdk Open this link in a new tab package, versions [,20.3.5) [21.0.0,21.3.1)
Do your applications use this vulnerable package?
19 Jan 2022
18 Jan 2022
How to fix?
org.graalvm.sdk:graal-sdk to version 20.3.5, 21.3.1 or higher.
Affected versions of this package are vulnerable to Uncaught Exception. A flaw was found in the
Pattern class implementation in the Libraries component. A specially crafted input could cause the
Pattern class to raise an unexpected exception while performing regular expression matching, possibly causing a Java application using the class to misbehave.