woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

Security Bulletin: IBM Tivoli Business Service Manager is vulnerable to a denial of service attack due to FasterXML Woodstox

Summary FasterXML Woodstox is shipped with IBM Tivoli Business Manager 6.2.0 as part of its XML processor insfrastructure. Information about security vulnerabilities affecting FasterXML Woodstox has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-40151 DESCRIPTION:...

woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

A flaw was found in the FasterXML/woodstox package. This flaw allows an attacker to cause a denial of service DoS in its target via XML serialization. An attacker may benefit from the parser sending a malicious input that may cause a crash. This vulnerability is only relevant for users using the...

Denial of Service due to parser crash

Those using FasterXML/woodstox to seralize XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. This...

Denial of Service due to parser crash

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to seralize XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

Denial of Service via stack overflow

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to serialise XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

Denial of Service via stack overflow

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to serialise XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

GHSA-9FWF-46G9-45RX Denial of Service via stack overflow

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to serialise XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

GHSA-4RV7-WJ6M-6C6R Denial of Service due to parser crash

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to seralize XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

GHSA-3F7H-MF4Q-VRM4 Denial of Service due to parser crash

Those using FasterXML/woodstox to seralize XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. This...

GHSA-FV22-XP26-MM9W Denial of Service due to parser crash

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to seralize XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...

GHSA-5HC5-C3M9-8VCJ Denial of Service via stack overflow

Withdrawn This advisory has been withdrawn because it has been found to be a duplicate. Please see the issue here for more information. Original Despcription Those using FasterXML/woodstox to serialise XML data may be vulnerable to Denial of Service attacks DOS. If the parser is running on user...