DirectorySecurity Advisories
Sign In
Security Advisories

CGA-cxxv-5q2j-64j3

Published

Last updated

https://images.chainguard.dev/security/CGA-cxxv-5q2j-64j3
Package

spark-3.4

Latest Update
Under investigation
Aliases
  • CVE-2019-10172
  • GHSA-r6j9-8759-g62w

Severity

7.5

High

CVSS V3

Summary

Improper Restriction of XML External Entity Reference in jackson-mapper-asl

Description

A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar to CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but in different classes.

References

Updates


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images