42 matches found
CVE-2023-42276
CVE-2023-42276 (hutool v5.8.21) : A buffer overflow in the jsonArray component has been reported. The NVD entry documents a 3.1 CVSS base score of 9.8 (CRITICAL) with NETWORK attack vector, low complexity, no user interaction, and impact to confidentiality, integrity, and availability (all HIGH)....
CVE-2023-42276
hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...
Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.5 security update on RHEL 7
New Red Hat Single Sign-On 7.6.5 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
jettison: Uncontrolled Recursion in JSONArray
A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...
OSV-2023-693 Security exception in org.json.JSONArray.writeTo
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61399 Crash type: Security exception Crash state: org.json.JSONArray.writeTo org.json.JSONStringer.value org.json.JSONStringer.peek...
jettison: Uncontrolled Recursion in JSONArray
A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...
RHEL 9 : Red Hat JBoss Enterprise Application Platform (RHSA-2023:4507)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4507 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
Moderate: Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.13.3 security update
Red Hat Integration Camel Extensions for Quarkus 2.13.3 release and security update is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Red Hat Product Security has rated this update as having an impact of Important. A Common Vulnerability...
jettison: Uncontrolled Recursion in JSONArray
A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...
Important: jettison
Issue Overview: An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown. CVE-2023-1436 Affected Packages: jettison Note: This advisory is...
jettison: Uncontrolled Recursion in JSONArray
A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...
OSV-2023-335 Security exception in org.json.JSONArray.writeTo
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58204 Crash type: Security exception Crash state: org.json.JSONArray.writeTo org.json.JSONStringer.value org.json.JSONStringer.peek...
SUSE-SU-2023:1948-1 Security update for jettison
This update for jettison fixes the following issues: Upgrade to version 1.5.4: - CVE-2023-1436: Fixed infinite recursion triggered when constructing a JSONArray from a Collection bsc1209605...
CVE-2023-1436
A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...
Denial Of Service (DoS)
org.codehaus.jettison:jettison is vulnerable to Denial of Service DoS. The vulnerability is due to an infinite loop when constructing a JSONArray from a Collection that contains a self-reference in one of its elements which leads to a StackOverflowError exception, resulting in an application cras...
Jettison vulnerable to infinite recursion
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown...
GHSA-Q6G2-G7F3-RR83 Jettison vulnerable to infinite recursion
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown...
Design/Logic Flaw
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown...
CVE-2023-1436 Infinite recursion in Jettison leads to denial of service when creating a crafted JSONArray
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown...
CVE-2023-1436
An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads to a StackOverflowError exception being thrown...