Language:

Information about definition

Identificator: INFSA-2025:14126

Type: security

Release date: 2025-08-28 16:57:04 UTC

Information about package

The Public Key Infrastructure (PKI) Core contains fundamental packages required by Red Hat Certificate System.

Vulnerabilities description

CVE-2025-52999
A nested data handling flaw was found in Jackson Core. When parsing particularly deeply nested data structures, a Stack overflow Error can occur.

Severity level

CVE	Score CVSS 2.0	Score CVSS 3.x	Score CVSS 4.0
NIST — CVE-2025-52999	no information	7.5	no information

Critical, important, moderate, low

Updated packages

INFSA-2025:14126: pki-deps:10.6 security update