CVE-2021-39194

Loop with Unreachable Exit Condition (Infinite Loop) in maven/com.charleskorn.kaml/kaml

Identifiers

CVE-2021-39194, GHSA-fmm9-3gv8-58f4

Package Slug

maven/com.charleskorn.kaml/kaml

Vulnerability

Loop with Unreachable Exit Condition (Infinite Loop)

Description

kaml is an open source implementation of the YAML format with support for kotlinx.This could result in resource starvation and denial of service. This only affects applications that use polymorphic serialization with the default tagged polymorphism style.

Affected Versions

All versions before 0.35.3

Solution

Upgrade to version 0.35.3 or above.

Last Modified

2021-09-16

source