VYPR

rpm package

opensuse/java-jwt&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/java-jwt&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2022-42003Oct 2, 2022
    affected < 4.4.0-1.1fixed 4.4.0-1.1

    In FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled.