A flaw was found in the XStream package. This flaw allows an attacker to cause a denial of service (DoS) in its target via XML serialization.
bugzilla.redhat.com/show_bug.cgi?id=2134289
nvd.nist.gov/vuln/detail/CVE-2022-40155
www.cve.org/CVERecord?id=CVE-2022-40155