OPENSUSE-SU-2024:10877-1 jdom2-2.0.6-3.2 on GA media

These are all security issues fixed in the jdom2-2.0.6-3.2 package on the GA media of openSUSE Tumbleweed...

Fedora: Security Advisory for jdom2 (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 40 Update: jdom2-2.0.6.1-7.fc40

JDOM is a Java-oriented object model which models XML documents. It provides a Java-centric means of generating and manipulating XML documents. While JDOM inter-operates well with existing standards such as the Simple API for XML SAX and the Document Object Model DOM, it is not an abstraction lay...

Mageia: Security Advisory (MGASA-2021-0381)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 35 Update: jdom2-2.0.6-24.fc35

JDOM is a Java-oriented object model which models XML documents. It provides a Java-centric means of generating and manipulating XML documents. While JDOM inter-operates well with existing standards such as the Simple API for XML SAX and the Document Object Model DOM, it is not an abstraction lay...

MGASA-2021-0381 Updated jdom/jdom2 packages fix a security vulnerability

An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request CVE-2021-33813...

ai.stainless:grails-tika (=0.1.0), android.arch.navigation:navigation-safe-args-gradle-plugin (>=1.0.0 <=1.0.0-rc02) +2558 more potentially affected by CVE-2021-33813 via org.jdom:jdom2 (>=2.0.3 <=2.0.6)

org.jdom:jdom2 MAVEN version =2.0.3, =1.0.0, =1.2.0-alpha12, =1.2.0-alpha12, =1.2.0-alpha12, =1.2.0-alpha12, =1.1.0, =1.2.0-alpha12, =1.0.0, =2.4.0, =2.4.0, =2.0.0, =1.0.0-alpha01, =1.0...

openSUSE: Security Advisory for jdom2 (openSUSE-SU-2021:1031-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE 15 Security Update : jdom2 (openSUSE-SU-2021:1031-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1031-1 advisory. - An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request. CVE-2021-33813 Note tha...

OPENSUSE-SU-2021:1031-1 Security update for jdom2

This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request bsc1187446 This update was imported from the SUSE:SLE-15-SP2:Update update project...

openSUSE: Security Advisory for jdom2 (openSUSE-SU-2021:2293-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for jdom2 (important)

openSUSE Security Update: Security update for jdom2 Announcement ID: openSUSE-SU-2021:1031-1 Rating: important References: 1187446 Cross-References: CVE-2021-33813 CVSS scores: CVE-2021-33813 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-33813 SUSE: 7.5...

SUSE SLED15 / SLES15 Security Update : jdom2 (SUSE-SU-2021:2293-1)

The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:2293-1 advisory. - An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request. CVE-2021-33813 Not...

OPENSUSE-SU-2021:2293-1 Security update for jdom2

This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request bsc1187446...

SUSE-SU-2021:2293-1 Security update for jdom2

This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request bsc1187446...

SUSE: Security Advisory (SUSE-SU-2021:2293-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for jdom2 (important)

openSUSE Security Update: Security update for jdom2 Announcement ID: openSUSE-SU-2021:2293-1 Rating: important References: 1187446 Cross-References: CVE-2021-33813 CVSS scores: CVE-2021-33813 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-33813 SUSE: 7.5...

XML External Entity (XXE)

jdom2 is vulnerable to XML External Entity XXE. An attacker is able to crash the system by submitting a malicious HTTP request...

CVE-2019-12814

A new polymorphic typing flaw was discovered in FasterXML jackson-databind, versions 2.x through 2.9.9. With default typing enabled, an attacker can send a specifically crafted JSON message to the server that allows them to read arbitrary local files. Mitigation This vulnerability relies on jdom...

UBUNTU-CVE-2016-3674

Multiple XML external entity XXE vulnerabilities in the 1 Dom4JDriver, 2 DomDriver, 3 JDomDriver, 4 JDom2Driver, 5 SjsxpDriver, 6 StandardStaxDriver, and 7 WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document...