Lucene search
UbuntuUSN-6177-1HistoryJun 19, 2023 - 12:00 a.m.
Jettison vulnerabilities
2023-06-1900:00:00
ubuntu.com
42
jettison library
ubuntu 22.10
ubuntu 22.04 lts
ubuntu 20.04 lts
ubuntu 18.04 esm
ubuntu 16.04 esm
libjettison-java
denial of service
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
8.1
Confidence
High
EPSS
0.002
Percentile
53.0%
Releases
- Ubuntu 22.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
Packages
- libjettison-java - A Java library for converting XML to JSON and vice-versa
Details
It was discovered that Jettison incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to cause a
denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 22.10 | noarch | libjettison-java | < 1.4.1-1ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.04 | noarch | libjettison-java | < 1.4.1-1ubuntu0.22.04.1 | UNKNOWN |
| Ubuntu | 20.04 | noarch | libjettison-java | < 1.4.0-1ubuntu0.20.04.1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libjettison-java | < 1.4.0-1ubuntu0.18.04.1~esm1 | UNKNOWN |
| Ubuntu | 18.04 | noarch | libjettison-java | < 1.4.0-1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libjettison-java | < 1.2-3ubuntu0.1~esm1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libjettison-java | < 1.2-3 | UNKNOWN |
Related
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : Jettison vulnerabilities (USN-6177-1)
2023-06-19 00:00:00
Debian DSA-5312-1 : libjettison-java - security update
2023-01-11 00:00:00
Amazon Linux 2 : jettison (ALAS-2023-2086)
2023-06-13 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5312-1)
2023-01-12 00:00:00
Ubuntu: Security Advisory (USN-6177-1)
2023-06-20 00:00:00
Debian: Security Advisory (DLA-3259-1)
2023-01-01 00:00:00
osv
osv
libjettison-java vulnerabilities
2023-06-19 11:39:43
libjettison-java - security update
2023-01-10 00:00:00
libjettison-java - security update
2022-12-31 00:00:00
debian
debian
[SECURITY] [DSA 5312-1] libjettison-java security update
2023-01-10 23:10:35
[SECURITY] [DLA 3259-1] libjettison-java security update
2022-12-31 17:25:15
[SECURITY] [DLA 3184-1] libjettison-java security update
2022-11-10 11:04:03
ibm
ibm
amazon
amazon
Important: jettison
2023-06-07 23:52:00
Important: jettison
2023-06-07 23:52:00
Medium: jettison
2023-11-29 22:20:00
redhat
redhat
(RHSA-2023:0544) Important: Red Hat Camel for Spring Boot 3.14.5 Patch 1 release and security update
2023-01-30 17:10:04
(RHSA-2023:2135) Important: Red Hat Process Automation Manager 7.13.3 security update
2023-05-04 15:55:15
(RHSA-2023:3610) Important: jenkins and jenkins-2-plugins security update
2023-06-15 00:10:54
veracode
veracode
Denial Of Service (DoS)
2022-12-14 09:59:44
Denial Of Service (DoS)
2022-09-19 12:01:03
Denial Of Service (DoS)
2022-12-14 08:43:03
github
github
Jettison Out-of-bounds Write vulnerability
2022-12-13 15:30:26
Jettison Out-of-bounds Write vulnerability
2022-12-13 15:30:27
Jettison parser crash by stackoverflow
2022-09-17 00:00:41
f5
f5
K000134496 : Jettison vulnerability CVE-2022-45685
2023-05-08 00:00:00
atlassian
atlassian
nvd
nvd
debiancve
debiancve
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2022-45685
2022-12-13 00:00:00
CVE-2022-45693
2022-12-13 00:00:00
CVE-2022-40150 Stack Buffer Overflow in Jettison
2022-09-16 00:00:00
prion
prion
Stack overflow
2022-12-13 15:15:00
Stack overflow
2022-12-13 15:15:00
Input validation
2022-09-16 10:15:00
redhatcve
redhatcve
cve
cve
oracle
oracle
Oracle Critical Patch Update Advisory - July 2024
2024-07-16 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
8.1
Confidence
High
EPSS
0.002
Percentile
53.0%
Related for USN-6177-1