{"id":"DLA-3207-1","summary":"jackson-databind - security update","modified":"2026-03-09T01:45:08.937437261Z","published":"2022-11-27T00:00:00Z","upstream":["CVE-2020-36518","CVE-2022-42003","CVE-2022-42004","DEBIAN-CVE-2020-36518","DEBIAN-CVE-2022-42003","DEBIAN-CVE-2022-42004"],"affected":[{"package":{"name":"jackson-databind","ecosystem":"Debian:10","purl":"pkg:deb/debian/jackson-databind?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.8-3+deb10u4"}]}],"versions":["2.9.8-3","2.9.8-3+deb10u1","2.9.8-3+deb10u2","2.9.8-3+deb10u3"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dla-osv/DLA-3207-1.json"}}],"schema_version":"1.7.3"}