Download
| Alert*
oval:org.secpod.oval:def:88433
Several flaws were discovered in jackson-databind, a fast and powerful JSON library for Java. CVE-2020-36518 Java StackOverflow exception and denial of service via a large depth of nested objects. CVE-2022-42003 In FasterXML jackson-databind resource exhaustion can occur because of a lack of a check ... oval:org.secpod.oval:def:3300848 SUSE Security Update: Security update for jackson-databind oval:org.secpod.oval:def:89047896 This update for jackson-databind fixes the following issues: Update to version 2.13.4.2: - CVE-2022-42003: Fixed missing check in primitive value deserializers to avoid deep wrapper array nesting wrt "UNWRAP_SINGLE_VALUE_ARRAYS" . - CVE-2022-42004: Fixed missing check in "BeanDeserializer._deseriali ... oval:org.secpod.oval:def:610263 Several flaws were discovered in jackson-databind, a fast and powerful JSON library for Java. CVE-2020-36518 Java StackOverflow exception and denial of service via a large depth of nested objects. CVE-2022-42003 In FasterXML jackson-databind resource exhaustion can occur because of a lack of a check ... oval:org.secpod.oval:def:4501412 Rocky Enterprise Software Foundation Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fix: * CVE-2022-1471 CVE-2022-25857 CVE-2022-38749 CVE-2022 ... |