CVE-2020-28491

This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:fasterxml:jackson-dataformats-binary:*:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-dataformats-binary:*:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-dataformats-binary:2.12.0:-:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-dataformats-binary:2.12.0:rc1:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-dataformats-binary:2.12.0:rc2:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:quarkus:quarkus:*:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-02-18 16:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-28491

Mitre link : CVE-2020-28491

CVE.ORG link : CVE-2020-28491


JSON object : View

Products Affected

fasterxml

  • jackson-dataformats-binary

quarkus

  • quarkus

oracle

  • weblogic_server
CWE
CWE-770

Allocation of Resources Without Limits or Throttling