FasterXML/jackson-dataformats-text

Releases118

Frequency4 weeks 16 hours

Last Release 19 days ago

Stars452

Uber-project for (some) standard Jackson textual format backends: csv, properties, yaml (xml to be added in future)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-3894 ↗	Aug 8, 2023Tuesday, 8 August 2023, 18:15	5.8 MEDIUM	—
Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack.