Uploaded image for project: 'Apache Cassandra'
  1. Apache Cassandra
  2. CASSANDRA-17907

Remediate CVE-2022-25857 - org.yaml_snakeyaml version 1.26 has vulnerabilities

    XMLWordPrintableJSON

Details

    Description

      org.yaml_snakeyaml CVE-2022-25857 Fixed in: 1.31
      21 days ago
        6 Impacted versions: <1.31
      Discovered: a day ago
      Published: 21 days ago
      The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.

      Attachments

        Activity

          People

            brandon.williams Brandon Williams
            deepagkanaka deepagkanaka
            Brandon Williams
            Stefan Miklosovic
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: