Description
A stack overflow in Jettison before v1.5.2 allows attackers to cause a Denial of Service (DoS) via crafted JSON data.
Remediation
References
https://github.com/jettison-json/jettison/issues/54
https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html
https://www.debian.org/security/2023/dsa-5312
Related Vulnerabilities
CVE-2022-47105 Vulnerability in maven package org.jeecgframework.boot:jeecg-module-system
CVE-2023-45280 Vulnerability in maven package org.yamcs:yamcs-core
CVE-2021-21428 Vulnerability in maven package org.openapitools:openapi-generator-online
CVE-2022-45401 Vulnerability in maven package org.jenkinsci.plugins:associated-files
CVE-2023-49377 Vulnerability in maven package com.jfinal:jfinal