Gentoo Linux Security Advisory 202401-11 - Multiple vulnerabilities have been found in Apache Batik, the worst of which could result in arbitrary code execution. Versions greater than or equal to 1.17 are affected.
38dc322bd0fed516dfe0f2d0a1d6bae717c540ee1db996da4b99b50da6a45469
Debian Linux Security Advisory 4215-1 - Man Yue Mo, Lars Krapf and Pierre Ernst discovered that Batik, a toolkit for processing SVG images, did not properly validate its input. This would allow an attacker to cause a denial-of-service, mount cross-site scripting attacks, or access restricted files on the server.
2d9b39b974a5f33b1f7a930d82705a27101df4d1aae48a72b20c8eed72590be3
Ubuntu Security Notice 3661-1 - It was discovered that Batik incorrectly handled certain XML. An attacker could possibly use this to expose sensitive information.
e62d00a17dbff3ffc4e982defa81d09d47e6097888dc92c5f70a48911bf52044
Apache Batik versions 1.0 through 1.9.1 suffer from an information disclosure vulnerability.
d87dbb7678fbb6eb6da6bf65eb0b618a7feb53279e67f7829e550cf9653ed0db