DescriptionThose using Jettison to parse untrusted XML or JSON data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.
Overall state of this security issue: Pending
This issue is currently rated as having important severity.
|National Vulnerability Database|
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA jettison-1.5.1-1.1
SUSE Timeline for this CVECVE page created: Sat Sep 17 09:35:42 2022
CVE page last modified: Mon Dec 12 19:09:35 2022