Skip to content
This repository has been archived by the owner on Jan 19, 2023. It is now read-only.

Advisory: CVE-2020-15522 Jackson Databind #267

Open
mcr-paulanand opened this issue Apr 4, 2022 · 1 comment
Open

Advisory: CVE-2020-15522 Jackson Databind #267

mcr-paulanand opened this issue Apr 4, 2022 · 1 comment
Labels
advisory An advisory missing from the OSS Index database

Comments

@mcr-paulanand
Copy link

mcr-paulanand commented Apr 4, 2022
edited
Loading

To facilitate future automation, please use the following format

Advisory details

  URL: https://nvd.nist.gov/vuln/detail/CVE-2020-15522
  format: maven
  namespace: org.bouncycastle
  name: bcprov-jdk15on
  versions: (,1.66)

More information
Any additional information that might be useful/interesting
@mcr-paulanand mcr-paulanand added the advisory An advisory missing from the OSS Index database label Apr 4, 2022
@mcr-paulanand mcr-paulanand changed the title Advisory: CVE-2020-15522 Advisory: CVE-2020-15522 Jackson Databind Apr 4, 2022
@ken-duck
Copy link
Contributor

Very sorry for the delay. As you may have noticed, a number of issues have fallen through the cracks, and we are in the process of catching up and cleaning things up.

Thank you for your report. We are migrating to a new email-based reporting system in order to better mesh with our internal processes, which will allow us to be more reactive to our users. I have moved your request to the internal tracking system and the research team will look into the issue shortly.

If you notice further issues or would like to follow up on this one, please email ossindex@sonatype.org

# for free to subscribe to this conversation on GitHub. Already have an account? #.
Assignees
No one assigned
Labels
advisory An advisory missing from the OSS Index database
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ken-duck @mcr-paulanand