VYPR

apk package

chainguard/camunda-8.8-compat

pkg:apk/chainguard/camunda-8.8-compat

Vulnerabilities (1)

  • CVE-2026-21452Jan 2, 2026
    affected < 8.8.8-r0fixed 8.8.8-r0

    MessagePack for Java is a serializer implementation for Java. A denial-of-service vulnerability exists in versions prior to 0.9.11 when deserializing .msgpack files containing EXT32 objects with attacker-controlled payload lengths. While MessagePack-Java parses extension headers