CVE-2022-45693

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-45693

Severity

7.5

High

CVSS V3

Description

Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

References

https://images.chainguard.dev/security/CGA-c5fg-gm82-jrmq
https://github.com/advisories/GHSA-grr4-wv38-f68w
https://images.chainguard.dev/security/CGA-j86m-hj7p-q669
https://images.chainguard.dev/security/CGA-jq56-xgwv-8j2p
https://github.com/jettison-json/jettison/issues/52
https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html
https://www.debian.org/security/2023/dsa-5312

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CVE-2022-45693

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company