Описание
A vulnerability, which was classified as problematic, has been found in joelittlejohn jsonschema2pojo 1.2.2. This issue affects the function apply of the file org/jsonschema2pojo/rules/SchemaRule.java of the component JSON File Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
A flaw was found in jsonschema2pojo, specifically in the apply function within SchemaRule.java. The issue leads to a stack-based buffer overflow, requiring local system access for exploitation.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat build of Apicurio Registry 2 | jsonschema2pojo-core | Fix deferred | ||
| Red Hat build of Apicurio Registry 3 | jsonschema2pojo-core | Fix deferred | ||
| Red Hat Fuse 7 | jsonschema2pojo-core | Fix deferred | ||
| Red Hat Fuse 7 | jsonschema2pojo-maven-plugin | Fix deferred | ||
| Red Hat Fuse 7 | jsonschema2pojo-scalagen | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform 8 | jsonschema2pojo-core | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform 8 | jsonschema2pojo-gradle-plugin | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform 8 | jsonschema2pojo-maven-plugin | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform 8 | kubernetes-model-jsonschema2pojo | Fix deferred | ||
| Red Hat JBoss Enterprise Application Platform Expansion Pack | jsonschema2pojo-core | Fix deferred |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
A vulnerability, which was classified as problematic, has been found in joelittlejohn jsonschema2pojo 1.2.2. This issue affects the function apply of the file org/jsonschema2pojo/rules/SchemaRule.java of the component JSON File Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
jsonschema2pojo has Improper Restriction of Operations within the Bounds of a Memory Buffer
EPSS
5.3 Medium
CVSS3