ALAS2-2025-2934 — Vulnetix

ALAS2-2025-2934 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	jackson

Exploit Intelligence

This repository provides a comprehensive security remediation of denial-of-service and allocation of resources without limits or throttling security vulnerabilities reported in CVE-2025-52999, GHSA-2m67-wjpj-xhg9 and sonatype-2022-6438 while maintaining full compatibility with jackson‑core 2.13.5. (github-poc-repo)
This repository provides a comprehensive security remediation of denial-of-service and allocation of resources without limits or throttling security vulnerabilities reported in CVE-2025-52999, GHSA-2m67-wjpj-xhg9 and sonatype-2022-6438 while maintaining full compatibility with jackson‑core 2.13.5. (github-poc)
cve_security_tests.rs (github-poc)

Timeline

Jul 30, 2025 CVE Published

References

ALAS2-2025-2934: jackson (medium) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›