Description
A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data.
Remediation
References
https://github.com/jettison-json/jettison/issues/54
https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html
https://www.debian.org/security/2023/dsa-5312
Related Vulnerabilities
CVE-2021-25978 Vulnerability in npm package apostrophe
CVE-2022-4111 Vulnerability in npm package tooljet
CVE-2022-32533 Vulnerability in maven package org.apache.portals.jetspeed-2:jetspeed
CVE-2020-7768 Vulnerability in npm package @grpc/grpc-js
CVE-2021-27515 Vulnerability in maven package org.webjars.bowergithub.unshiftio:url-parse