Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libjackson-json-java@1.9.2-3
purl pkg:deb/debian/libjackson-json-java@1.9.2-3
Next non-vulnerable version 1.9.13-2
Latest non-vulnerable version 1.9.13-2
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-7x9r-v8nm-nbf7
Aliases:
CVE-2019-10172
GHSA-r6j9-8759-g62w
Improper Restriction of XML External Entity Reference in jackson-mapper-asl A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar to CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but in different classes.
1.9.13-2
Affected by 0 other vulnerabilities.
VCID-ceub-d4s9-dkcd
Aliases:
CVE-2017-15095
GHSA-h592-38cm-4ggp
Deserialization of Untrusted Data A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the `readValue` method of the `ObjectMapper`.
1.9.13-2
Affected by 0 other vulnerabilities.
VCID-v84e-sf92-dqa1
Aliases:
CVE-2017-7525
GHSA-qxxx-2pp7-5hmx
A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.
1.9.13-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:08:04.724172+00:00 Debian Oval Importer Affected by VCID-v84e-sf92-dqa1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:48:25.204579+00:00 Debian Oval Importer Affected by VCID-7x9r-v8nm-nbf7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:33:20.782902+00:00 Debian Oval Importer Affected by VCID-ceub-d4s9-dkcd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T23:42:03.247759+00:00 Debian Oval Importer Affected by VCID-v84e-sf92-dqa1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:33:03.998567+00:00 Debian Oval Importer Affected by VCID-7x9r-v8nm-nbf7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:18:05.537737+00:00 Debian Oval Importer Affected by VCID-ceub-d4s9-dkcd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:14:30.616827+00:00 Debian Oval Importer Affected by VCID-v84e-sf92-dqa1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:18:15.098692+00:00 Debian Oval Importer Affected by VCID-7x9r-v8nm-nbf7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:04:14.096038+00:00 Debian Oval Importer Affected by VCID-ceub-d4s9-dkcd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0