Download
| Alert*
|
oval:org.secpod.oval:def:610342
Several flaws have been discovered in libjettison-java, a collection of StAX parsers and writers for JSON. Specially crafted user input may cause a denial of service via out-of-memory or stack overflow errors. oval:org.secpod.oval:def:93216 libjettison-java: A Java library for converting XML to JSON and vice-versa Several security issues were fixed in Jettison. oval:org.secpod.oval:def:88451 Several flaws have been discovered in libjettison-java, a collection of StAX parsers and writers for JSON. Specially crafted user input may cause a denial of service via out-of-memory or stack overflow errors. oval:org.secpod.oval:def:708253 libjettison-java: A Java library for converting XML to JSON and vice-versa Several security issues were fixed in Jettison. oval:org.secpod.oval:def:1701955 Those using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks . If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack |
