A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data.
References
Link | Resource |
---|---|
https://github.com/jettison-json/jettison/issues/54 | Exploit Issue Tracking Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html | Mailing List Third Party Advisory |
https://www.debian.org/security/2023/dsa-5312 | Third Party Advisory |
https://github.com/jettison-json/jettison/issues/54 | Exploit Issue Tracking Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html | Mailing List Third Party Advisory |
https://www.debian.org/security/2023/dsa-5312 | Third Party Advisory |
Configurations
History
21 Nov 2024, 07:29
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/jettison-json/jettison/issues/54 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html - Mailing List, Third Party Advisory | |
References | () https://www.debian.org/security/2023/dsa-5312 - Third Party Advisory |
Information
Published : 2022-12-13 15:15
Updated : 2024-11-21 07:29
NVD link : CVE-2022-45685
Mitre link : CVE-2022-45685
CVE.ORG link : CVE-2022-45685
JSON object : View
Products Affected
debian
- debian_linux
jettison_project
- jettison
CWE
CWE-787
Out-of-bounds Write