Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/jackson-databind@2.14.0-1
purl pkg:deb/debian/jackson-databind@2.14.0-1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-2cup-9gdn-yyhk jackson-databind possible Denial of Service if using JDK serialization to serialize JsonNode jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before 2.13.1 allows attackers to cause a denial of service (2 GB transient heap usage per read) in uncommon situations involving JsonNode JDK serialization. CVE-2021-46877
GHSA-3x8x-79m2-3w2w

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:29:00.644814+00:00 Debian Importer Fixing VCID-2cup-9gdn-yyhk https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:18:16.053531+00:00 Debian Importer Fixing VCID-2cup-9gdn-yyhk https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T20:10:46.211013+00:00 Debian Importer Fixing VCID-2cup-9gdn-yyhk https://security-tracker.debian.org/tracker/data/json 38.1.0