CVE-2020-36518

Опубликовано: 11 мар. 2022

Источник: debian

Описание

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

Пакет	Статус	Версия исправления	Релиз	Тип
jackson-databind	fixed	2.13.2.2-1		package

CVE-2020-36518

CVSS3: 7.5

ubuntu

почти 4 года назад

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

CVE-2020-36518

CVSS3: 7.5

redhat

больше 5 лет назад

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

CVE-2020-36518

CVSS3: 7.5

nvd

почти 4 года назад

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

RLSA-2024:3061

rocky

больше 1 года назад

Moderate: pki-core:10.6 and pki-deps:10.6 security update

GHSA-57j2-w4cx-62h2

CVSS3: 7.5

github

почти 4 года назад

Deeply nested json in jackson-databind