2 matches found
CLSA-2025-1764772111 jackson-modules-base: Fix of CVE-2025-52999
Rebuilt with the CVE-2025-52999: fixed jackson-core version - Fixed build: replaced missing packages with a patch for PackageVersion...
jackson-core can throw a StackoverflowError when processing deeply nested data
Impact With older versions of jackson-core, if you parse an input file and it has deeply nested data, Jackson could end up throwing a StackoverflowError if the depth is particularly large. Patches jackson-core 2.15.0 contains a configurable limit for how deep Jackson will traverse in an input...