VYPR

Maven package

org.codehaus.jackson/jackson-mapper-asl

pkg:maven/org.codehaus.jackson/jackson-mapper-asl

Vulnerabilities (2)

  • CVE-2019-10172Nov 18, 2019
    affected <= 1.9.13

    A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but in different classes.

  • CVE-2019-10202Oct 1, 2019
    affected <= 1.9.13

    A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-2017-7525, CVE-2017-15095, CVE-2018-5968, CVE-2018-7489, CVE-2018-1000873, CVE-2019-12086 reported for FasterXML jackson-databind by impleme