CVE-2023-3894 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2023-3894 Interim 1 2 2023-08-23T23:20:17Z current 2023-08-09T23:16:35Z 2023-08-23T23:20:17Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2023-3894 Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed jackson-dataformat-csv-2.15.2-1.1 jackson-dataformat-properties-2.15.2-1.1 jackson-dataformat-toml-2.15.2-1.1 jackson-dataformat-yaml-2.15.2-1.1 jackson-dataformats-text-2.15.2-1.1 jackson-dataformats-text-javadoc-2.15.2-1.1 jackson-dataformat-csv-2.15.2-1.1 as a component of openSUSE Tumbleweed jackson-dataformat-properties-2.15.2-1.1 as a component of openSUSE Tumbleweed jackson-dataformat-toml-2.15.2-1.1 as a component of openSUSE Tumbleweed jackson-dataformat-yaml-2.15.2-1.1 as a component of openSUSE Tumbleweed jackson-dataformats-text-2.15.2-1.1 as a component of openSUSE Tumbleweed jackson-dataformats-text-javadoc-2.15.2-1.1 as a component of openSUSE Tumbleweed Those using jackson-dataformats-text to parse TOML data may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. This effect may support a denial of service attack. CVE-2023-3894 openSUSE Tumbleweed:jackson-dataformat-csv-2.15.2-1.1 openSUSE Tumbleweed:jackson-dataformat-properties-2.15.2-1.1 openSUSE Tumbleweed:jackson-dataformat-toml-2.15.2-1.1 openSUSE Tumbleweed:jackson-dataformat-yaml-2.15.2-1.1 openSUSE Tumbleweed:jackson-dataformats-text-2.15.2-1.1 openSUSE Tumbleweed:jackson-dataformats-text-javadoc-2.15.2-1.1 moderate 5.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L