VYPR
High severityNVD Advisory· Published Feb 18, 2021· Updated Sep 16, 2024

Denial of Service (DoS)

CVE-2020-28491

Description

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
com.fasterxml.jackson.dataformat:jackson-dataformat-cborMaven
>= 2.8.0rc1, < 2.11.42.11.4
com.fasterxml.jackson.dataformat:jackson-dataformat-cborMaven
>= 2.12.0rc1, < 2.12.12.12.1

Affected products

63

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.