Description
This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception.
Remediation
References
Related Vulnerabilities
MediaWiki Resource Management Errors Vulnerability (CVE-2015-2942)
Oracle Database Server CVE-2009-3415 Vulnerability (CVE-2009-3415)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5094)
Magento CVE-2019-7896 Vulnerability (CVE-2019-7896)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3731)