Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-40154HistorySep 16, 2022 - 10:15 a.m.
CVE-2022-40154
2022-09-1610:15:00
Debian Security Bug Tracker
security-tracker.debian.org
16
Those using Xstream to serialise XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack overflow. This effect may support a denial of service attack.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libxstream-java | <= 1.4.19-1 | libxstream-java_1.4.19-1_all.deb |
| Debian | 11 | all | libxstream-java | <= 1.4.15-3+deb11u1 | libxstream-java_1.4.15-3+deb11u1_all.deb |
| Debian | 10 | all | libxstream-java | <= 1.4.11.1-1+deb10u3 | libxstream-java_1.4.11.1-1+deb10u3_all.deb |
| Debian | 999 | all | libxstream-java | <= 1.4.19-1 | libxstream-java_1.4.19-1_all.deb |
Related
veracode
veracode
Denial Of Service (DoS)
2022-09-19 05:18:16
osv
osv
Denial of Service via stack overflow
2022-09-17 00:00:41
cve
cve
CVE-2022-40154
2022-09-16 10:15:00
github
github
Denial of Service via stack overflow
2022-09-17 00:00:41
redhatcve
redhatcve
CVE-2022-40154
2022-09-22 06:18:50
ubuntucve
ubuntucve
CVE-2022-40154
2022-09-16 00:00:00
ibm
ibm
redhat
redhat
Related for DEBIANCVE:CVE-2022-40154