Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-40155HistorySep 16, 2022 - 10:15 a.m.
CVE-2022-40155
2022-09-1610:15:00
Debian Security Bug Tracker
security-tracker.debian.org
14
Those using Xstream to serialise XML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack overflow. This effect may support a denial of service attack.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libxstream-java | <= 1.4.19-1 | libxstream-java_1.4.19-1_all.deb |
| Debian | 11 | all | libxstream-java | <= 1.4.15-3+deb11u1 | libxstream-java_1.4.15-3+deb11u1_all.deb |
| Debian | 10 | all | libxstream-java | <= 1.4.11.1-1+deb10u3 | libxstream-java_1.4.11.1-1+deb10u3_all.deb |
| Debian | 999 | all | libxstream-java | <= 1.4.19-1 | libxstream-java_1.4.19-1_all.deb |
Related
redhatcve
redhatcve
CVE-2022-40155
2022-10-13 15:31:03
github
github
Denial of Service via stack overflow
2022-09-17 00:00:41
ubuntucve
ubuntucve
CVE-2022-40155
2022-09-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-09-19 05:49:37
cve
cve
CVE-2022-40155
2022-09-16 10:15:00
osv
osv
Denial of Service via stack overflow
2022-09-17 00:00:41
ibm
ibm
redhat
redhat
Related for DEBIANCVE:CVE-2022-40155