Update com.fasterxml.jackson.core:jackson to fix CVE-2020-36518

XMLWordPrintable

    • Type: Public Security Vulnerability
    • Resolution: Fixed
    • Priority: Low
    • 4.8.11
    • Affects Version/s: 4.8.11
    • Component/s: None
    • None
    • 7.5
    • CVE-2020-36518

      com.fasterxml.jackson.core:jackson-databind is a library which contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. Affected versions of this package were vulnerable to Denial of Service (DoS) via a large depth of nested objects.

            Assignee:
            Unassigned
            Reporter:
            Serhii Lisovskyi (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: